Niara, a provider of big data security analytics for advanced threat discovery and investigation, has announced a partnership with Cloudera, provider of enterprise analytic data management powered by Apache Hadoop. The recently unveiled Niara Security Intelligence is now included in the Cloudera Certified Technology Program, providing customers with confidence that the joint solution has been tested and validated.
Niara delivers a new level of big data security analytics (BDSA) that would move enterprise security teams from reactive to proactive threat discovery, while also providing high-fidelity layered forensic evidence required to rapidly evaluate, respond to and mitigate security incidents.
“Enterprise security teams are looking for a new capability to accurately discover and validate advanced threats more quickly while accelerating the incident response process,” said Tim Stevens, vice president of business and corporate development at Cloudera. “Niara’s ability to leverage the scale and flexibility of Cloudera Enterprise and use varied data sources, not just log data, in both analytics and forensics increases SOC and analyst efficiency by enabling them to focus on the right problems and act more quickly.”
Key features of the solution include:
- Behavioral Analytics, Including UBA – Detecting subtle changes in user, system or application activity that when aggregated and tracked can indicate a compromised user or malicious insider.
- Accelerated Incident Investigation and Response – Niara develops a security dossier for key IT elements such as users, systems, IP addresses, etc. called an Entity360 profile. These profiles instantly would deliver all the supporting activity summaries over time required to understand both the severity of a threat and how to respond. Hours and days of work are compressed into minutes of review and action.
- More Efficient SOCs – Level One analysts are overwhelmed with alarms and alerts from the phalanx of security products deployed throughout the IT ecosystem. By highlighting the most important of these alerts and providing the supporting evidence to understand the scope of the threat, thousands of potential threats are reduced to the critical few.
- Automated and Human-Driven Threat Hunting – By matching new threat signals from external sources such as FS-ISAC with months or years of historical data, the question of “have we seen this before?” is instantly and automatically answered. In addition, an analyst can use Niara’s sophisticated query and visualization capabilities to proactively look for new threat paradigms on an ad hoc basis.
“All the obvious threats are caught by real-time defenses,” said Sriram Ramachandran, CEO of Niara. “Today, it’s the threats that have gotten through traditional defenses that grab the headlines and are the hardest to find. Cloudera Enterprise is the ideal platform on which to build a solution that provides big data security analytics. By aggregating and managing the massive depth and breadth of security data required to drive sophisticated behavioral analytics, Niara not only unearths these attacks but accelerates the investigation and response as well.”