OMAHA, NE--(Marketwired - Jul 8, 2015) - Solutionary, an NTT Group security company (NYSE: NTT) and the next-generation managed security services provider (MSSP), today announced that it is employing a suite of advanced analytic tools for its ActiveGuard® service platform, enabling its Security Operations Centers (SOCs) to deliver additional security context when investigating events. The ActiveGuard Security Analytics Toolkit includes the Meta Event Correlation Engine and ActiveGuard Investigator.
Meta Event Correlation allows SOC analysts to perform robust security analyses to better understand the risk of a security event by understanding its context based on previous, related security events. Meta Event Correlation gives SOC analysts visibility into past attacks, attack resolutions, source IP behavior and other elements that provide additional insight into security events. Understanding what happened in the past can help SOC analysts better react to current security events.
ActiveGuard Investigator (AGI) provides SOC analysts with real-time log search analytics to monitor and understand pre- and post-attack data patterns and investigations. This significantly expands analysts' capability to detect, validate and respond to threats. Raw log data is an invaluable tool to help validate security events, malware infections, network issues, anomalous activity, traffic spikes and database issues.
Analysts in the Solutionary SOCs are able to quickly research security events as they occur, using the additional analytics capabilities to thoroughly understand and quickly respond to events. The new tools provide quick analysis to determine what happened and why it happened, giving context to the event and supplying prescriptive details on impact and action. Capabilities include:
- Diagnostic Analytics - Examination of past activity to validate and determine what happened and why and to determine impact.
- Descriptive Analytics - Analysis of current activity (post attack), based on incoming data, to determine the impact of the attack/infection.
- Prescriptive Analytics - Recommended next steps and course of action to defend against or minimize the impact of an attack.
"As a next-generation MSSP, enterprises expect us to deliver enhanced alerts with security context," said Court Little, director of product management for Solutionary. "These additional analytics capabilities, including the ability to search raw logs, gives our analysts the ability to quickly research, understand and respond to security events, providing better protection for our clients."
New Hires Bring Deep Experience to Solutionary
In addition to the new technology resources, Solutionary continues to add security-expertise capabilities in its SOCs. Two recent hires, Scott Dally and Tristan Lawson, bring extensive security experience to their roles at Solutionary.
"Scott and Tristan offer deep technical, business and operations acumen to Solutionary," said Sheri Idelman, senior vice president of operations, Solutionary. "Their combined abilities will play a pivotal role in helping us to continue delivering industry-leading managed security services to our clients."
Scott Dally joins Solutionary as senior SOC manager in the company's Omaha headquarters. Scott's main focus will be continuous improvement of standards, training and the overall client experience. Dally has more than 14 years of experience as an information security professional and manager; he previously worked for the United States Strategic Command (USSTRATCOM) where he was chief of cybersecurity and information assurance.
Tristan Lawson joins Solutionary as a senior vulnerability scanning engineer. In this role, he will work across departments to streamline business processes, look for opportunities to automate tasks and ensure an excellent client experience. As an active teaching assistant for SANS Institute, Tristan will also be involved in employee training. Lawson holds numerous industry certifications and has over 10 years of information security experience. Previously, he worked for Infogressive, Inc., as a senior security engineer.
About Solutionary
Solutionary, an NTT Group security company (NYSE: NTT), is the next generation managed security services provider (MSSP), focused on delivering managed security services, security consulting services and global threat intelligence. Comprehensive Solutionary security monitoring and security device management services protect traditional and virtual IT infrastructures, cloud environments and mobile data. Solutionary clients are able to optimize current security programs, make informed security decisions, achieve regulatory compliance and reduce costs. The patented, cloud-based ActiveGuard® service platform uses multiple detection technologies and advanced analytics to protect against advanced threats. The Solutionary Security Engineering Research Team (SERT) researches the global threat landscape, providing actionable threat intelligence, enhanced threat detection and mitigating controls. Experienced, certified Solutionary security experts act as an extension of clients' internal teams, providing industry-leading client service to global enterprise and mid-market clients in a wide range of industries, including financial services, healthcare, retail and government. Services are delivered 24/7 through multiple state-of-the-art Security Operations Centers (SOCs).