In order to thwart cyber-attacks, an adaptive and risk-based response is a must. Security protection processes have to be continuous and provide pervasive monitoring and visibility. Also security protection platforms should feature domain specific embedded analytics besides traditional security information and event management (SIEM) systems.
LogRhythm a specialist in providing security intelligence solutions has partnered with ForeScout Technologies a provider of pervasive network security solutions to enable technology integration between the LogRhythm and ForeScout CounterACT platforms.
It is expected that this platform’s interoperability will provide customers with continuous operational and security intelligence besides predictive and preventative controls. Also the policy-based remediation capabilities will enhance security and compliance management.
It is imperative to make enterprise monitoring pervasive enough to include network activity, endpoints, system interactions, application transactions and user activity to provide visibility into enterprise-owned and employee-owned devices.
Paul Phillips, senior vice president of corporate and business development at ForeScout said, “By integrating with market leading SIEM platforms, such as LogRhythm, organizations gain the intelligence, analytics and mitigation capabilities that afford true compliance insight and greater operational efficiency.”
The LogRhythm security intelligence platform synergizes SIEM, log management, host forensics and network forensics with advanced analytics so that customers can detect and respond to advanced cyber threats. All available log and machine data is analyzed to get pervasive visibility covering the entire enterprise environment.
The ForeScout CounterACT platform optimizes access control, mobile and BYOD security, endpoint compliance and threat management. The solution applies network enforcement and endpoint remediation policy to managed and unmanaged users, devices, systems and applications in real time without agent intervention.
The combined abilities of the LogRhythm and ForeScout platforms will enable IT organizations to enhance cyber defense and close compliance management gaps in addition to ensuring that endpoint logging services are enrolled, active, and dynamically tuned.
Also LogRhythm’s analytics functionality can be improved with the help of ForeScout’s dynamically captured profile information. The combined solution helps identify, monitor and mitigate unmanaged and rogue devices, and unsanctioned application risks.