Niara, provider of big data security analytics for advanced threat discovery and investigation, today announced a new partnership with Cloudera, the most widely adopted big data platform in the world. The recently unveiled Niara Security Intelligence solution has been tested and validated to work with Cloudera Enterprise, the leading data management platform built on Apache Hadoop. Niara Security Intelligence is now included in the Cloudera Certified Technology Program, providing customers with confidence that the joint solution has been tested and validated.
“All the obvious threats are caught by real-time defenses. Today, it’s the threats that have gotten through traditional defenses that grab the headlines and are the hardest to find. Cloudera Enterprise is the ideal platform on which to build a solution that provides big data security analytics,” said Sriram Ramachandran, CEO of Niara. “By aggregating and managing the massive depth and breadth of security data required to drive sophisticated behavioral analytics, Niara not only unearths these attacks but accelerates the investigation and response as well. The diversity of data, depth of analytics and forensic insights provide capabilities unavailable in any other solution on the market.”
According to Gartner, 25 percent of large global companies are planning to adopt big data for security detection by 2016. Niara orchestrates machine learning and big data to provide enterprise security teams with the ability to make better decisions, even when dealing with massive volumes of data. Security intelligence leverages the scalable distributed compute and storage capabilities of Cloudera Enterprise, automatically applying advanced statistical modeling techniques such as behavior profiling analytics, including entity and user behavior analytics (UBA), and stateless discrete analytics to a range of rich, varied data sources (e.g., logs, flows, packets, files, alerts, and threat feeds). Niara delivers a new level of big data security analytics (BDSA) that moves enterprise security teams from reactive to proactive threat discovery, while also providing high-fidelity layered forensic evidence required to rapidly evaluate, respond to and mitigate security incidents.
“Enterprise security teams are looking for a new capability to accurately discover and validate advanced threats more quickly while accelerating the incident response process,” said Tim Stevens, vice president of business and corporate development at Cloudera. “Niara’s ability to leverage the scale and flexibility of Cloudera Enterprise and use varied data sources, not just log data, in both analytics and forensics increases SOC and analyst efficiency by enabling them to focus on the right problems and act more quickly.”
Key features of the solution include:
- Behavioral Analytics, Including UBA. Detecting subtle changes in user, system or application activity that when aggregated and tracked can indicate a compromised user or malicious insider.
- Accelerated Incident Investigation and Response. Niara develops a security dossier for key IT elements such as users, systems, IP addresses, etc. called an Entity360 profile. These profiles instantly deliver all the supporting activity summaries over time required to understand both the severity of a threat and how to respond. Hours and days of work are compressed into minutes of review and action.
- More Efficient SOCs. Level One analysts are overwhelmed with alarms and alerts from the phalanx of security products deployed throughout the IT ecosystem. By highlighting the most important of these alerts and providing the supporting evidence to understand the scope of the threat, thousands of potential threats are reduced to the critical few.
- Automated and Human-Driven Threat Hunting. By matching new threat signals from external sources such as FS-ISAC with months or years of historical data, the question of “have we seen this before?” is instantly and automatically answered. In addition, an analyst can use Niara’s sophisticated query and visualization capabilities to proactively look for new threat paradigms on an ad hoc basis.
The Niara Security Intelligence solution is available now and can be delivered for both cloud and on-prem deployments.
Niara will feature product demonstrations at Black Hat USA 2015 in Las Vegas on August 5-6, 2015. Stop by the Niara booth, IC19, to see a demo of the joint solution and to speak with the team.
About Niara
Niara’s Big Data Security Analytics platform integrates advanced machine learning and user behavior analytics with rich forensics to automate the discovery of sophisticated, multistage cyber attacks. Fusing security data from disparate sources, Niara provides unparalleled visibility and reduces the time and skill needed for security analysts to discover compromised users and malicious insiders, perform advanced threat hunting and conduct incident investigations. Headquartered in Sunnyvale, Calif., the company is backed by NEA, Index Ventures, and Venrock.
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.