Near Real-time Network Security Visiblity and Awareness
See a Complete Picture
Novetta Cyber Analytics is a linchpin enterprise security solution that enables security analysts, for the first time, to see a complete, near real-time, uncorrupted picture of their entire network, then ask and receive answers to subtle questions – at the speed of thought – to help detect, triage and respond to breaches. Built for and used as the primary tool at the heart of our nation's cyber defense, one of the largest and most attacked networks on the face of the planet, the solution is now available for commercial enterprises.
30X Your Incident Response Capabilities (Seriously.)
In 2007, Novetta was approached by a federal customer who had been unsuccessful in fully securing their network infrastructure for several years. In the process of searching for a solution, this client was hemorrhaging valuable funding on different tools such as SIEMs, network forensics, firewalls, intrusion prevention/detection systems, and other common IT security boxes, all of which had failed to give them a complete picture.
Handle 30X the Incidents | Find Undetected Breaches
Now their analysts can respond to an estimated 30 times the number of incidents and they have found innumerable breaches that would otherwise have gone undetected. With the ability to process and analyze hundreds of gigabytes per second of network data, they can now discover, triage, and respond to breaches at the same speed and volume as their attackers, immeasurably improving their overall security posture.
Augments Current Security Infrastructure
And, their infrastructure, which included a leading SIEM, IDS, etc., was not replaced: these products slow attackers down and force detection clues to be provided to Novetta Cyber Analytics.
Process and Analyze Hundreds of Gigabits per Second of Network Data
An Intrinsically Truthful Approach
Hackers must travel across a network to do anything. The first thing a sophisticated hacker does once they've breached a system is to cover their tracks by changing events and logs. So, the intrinsically truthful approach to securing any network is to monitor and analyze network packet capture data. While a few companies are attempting to do this, to-date none but Novetta has created a solution that is optimal for near real-time visibility and analysis.
Single Logical Sessions, 'NAT Collision' Handling and De-duping
A major problem with enabling analysis on network packet capture (PCAP) data is what to do with data that has asymmetric routing splits, duplicated data from multiple sensors, and IP address collisions from Network Address Translation (NAT) routing. Novetta Cyber Analytics handles these challenges by matching Session IDs and other identifiers to 'connect the dots' for routing splits, it de-dupes data from multiple sensors, and uses unique IDs to handle NAT collisions. All of which creates a single elegant 'logical table' of data that can easily and quickly be sliced and diced for any sort of query.
Augmentation and Tagging - Improve the Collective Intelligence of Any Security Team
Novetta Cyber Analytics enriches this 'logical table' of raw PCAP data with location, DNS, black lists, white lists, threat intel, and other custom sources, enabling analysts to query and see a complete contextual picture of their network. It also enables analysts to 'tag' the data with their own thoughts and suspicions, enabling entire teams to collectively learn from each other.
Unprecedented Speed and Scale
Speed - Our groundbreaking security architecture reflects our big data analytic heritage. By performing packet capture and analysis via a high-speed metadata approach, we are able to support network-wide identification and triage of advanced security threats in a fraction of the time required by other solutions.
Scale - Novetta Cyber Analytics has executed analytical queries on hundreds of billions of session records at interactive speeds.
For more technical information, click here to download the Novetta Cyber Analytics Technical Product Brochure.
For the First Time, Truly Understand What is Happening on Any Network
Bringing it all together, Novetta Cyber Analytics collects, aggregates, enriches, and fuses all important network data from an entire enterprise into a highly scalable data store, making the information instantly available for analysis.
As a result, by utilizing clues forced by traditional security solutions, we can quickly and accurately:
- Highlight intrusions and insider threats
- Deliver alerts before catastrophic events
- Empower security analysts to rapidly triage and respond to events
No other solution can do what Novetta Cyber Analytics does. With its speed and effectiveness proven at massive scale within multiple agencies of the U.S. Department of Defense and other U.S. Departments, the solution is now available for private enterprises.
Let Us Prove To You the Solution's Effectiveness
We'd be happy to prove to you just how effective the solution can be. Please call or email for more information.
Phone (toll free): (844) NOVETTA (844-668-3882)