Integration will Accelerate Threat Detection Workflows and Improve Forensic Investigation Accuracy for Customers
MILPITAS, Calif., Oct. 18, 2017 — SS8, the network intelligence company, today announced that it has achieved technical integration of SS8 BreachDetect with McAfee Enterprise Security Manager (ESM) technology, enabling customers to more quickly discover unknown advanced cyber threats and investigate breaches through enriched network traffic analysis (NTA).
According to a recent Gartner, Inc. report on Security Information and Event Management (SIEM), “Through Gartner’s conversations with major SIEM providers, threat detection is, by far, the biggest focus area for product enhancement across the field of providers. High-level themes that are common among competitors include being able to detect more threats and being able to detect them faster than with traditional SIEM methods.”
The integration of SS8’s network intelligence platform with McAfee ESM enables customers to more quickly discover sophisticated attacks, and investigate breach behavior with pinpoint accuracy, down to specific devices-of-interest. SS8 generates High-Definition Records (HDRs) that decode what is happening on the network at the transaction level, the flow level and the session level. The network data is recursively analyzed against user, Web reputation and threat intelligence information, which produces device-centric alerts to McAfee ESM. This layer-7 enrichment and time-variant behavioral analysis helps customers accelerate the threat detection, investigation and remediation workflow.
“SIEM data is an invaluable source of information for hunting security threats, and SS8 makes it even more useful by supplementing it with deep context into network activity so that threats can be exposed with very little manual analysis,” said Tony Thompson, vice president and general manager for SS8 Networks. “The integration with McAfee ESM will enable customers to benefit from the high-definition network intelligence exchange between SS8 BreachDetect and McAfee ESM for easier and faster security threat discovery.”
“By integrating SS8’s network intelligence with McAfee ESM, SS8 is helping our joint customers experience faster detection times and reduced costs,” said D.J. Long, Head of McAfee Security Innovation Alliance. “We are pleased to welcome SS8 to the McAfee Security Innovation Alliance and look forward to mutually helping our customers protect their environments from the most advanced cyber threats.”
 Gartner, Inc., Competitive Landscape: SIEM Market, Worldwide, 25 May, 2017 by Eric Ahlm
About SS8 Networks
SS8, the network intelligence company, provides solutions to help customers quickly identify, track and investigate suspects and devices of interest. By generating, storing and recursively analyzing high-definition metadata records extracted from network packets, SS8 customers gain unprecedented intelligence for investigating what matter most. SS8 is trusted by six of the largest intelligence agencies, eight of the 14 largest communications providers and five of the largest systems integrators. Visit www.ss8.com or follow us on Twitter @SS8.
SS8 is a registered trademark of SS8 Networks, Inc. McAfee® and the McAfee logo are trademarks of McAfee, LLC or its subsidiaries in the United States and other countries. Other names and brands may be claimed as the property of others.