Directories

HBGary and HP Enterprise Security Partner To Deliver Advanced Threat Intelligence On The ArcSight Platform To Combat Targeted Attacks

2012-01-23

SACRAMENTO, Calif. ---- Today HBGary, Inc. announced that Active Defense,™ the most comprehensive host solution on the market today for detecting Advanced Persistent Threats (APT),has integrated with HP Enterprise Security’s ArcSight Security Information and Event Management (SIEM) solutions gaining the Common Event Format (CEF) Certification, an open log management standard that improves the interoperability of security-information from different security and network devices and applications.

HBGary also announced that the company has become a Gold partner in HP’s Enterprise Security Technology Ecosystem Alliance program. The technology partnership between HBGary and HP Enterprise Security creates the first real-time event notification solution to counter APT.

HBGary’s flagship product, Active Defense™ with Digital DNA™ monitors host physical memory, raw disk, and live operating systems concurrently across the enterprise to get an unprecedented view of host-level, new, derivatives of known threats and unknown threats. When integrated with Active Defense™, HP Enterprise Security’s ArcSight Enterprise Threat and Risk Management (ETRM) platform can leverage the most advanced threat intelligence available today, alerting on adaptive, APT-style attacks including memory-only rootkits, botnet communications, and other types of advanced exploit tools.

“We are very excited to partner with HBGary, a proven technology leader in providing active defense against today’s advanced persistent threats,” said Buck Watia, Director of Business Development, HP Enterprise Security. “This integration will provide our customers with actionable threat intelligence about the attacks taking place inside their networks so they can quickly mitigate risk and completely evict the attackers.”

“Security vendors must work together to help organizations defeat today’s APT attacks -- every day, companies are compromised, but few will learn about it until days, weeks or even months afterward,” said Penny Leavy, President of HBGary, Inc. “HBGary is pleased to integrate with ArcSight and partner with HP Enterprise Security to deliver immediate advanced threat intelligence so we can help our customers stay ahead of the threat curve.

About CEF Program

The ArcSight CEF certification program assists technology companies that want to adopt, test, and certify their compatibility with the ArcSight platform. The objective of the CEF certification program is to provide a well-defined process that includes documentation, event categorization assistance, and access to a hosted ArcSight ESM solution, for testing and Web support.

The CEF connector allows ArcSight ESM to connect to, aggregate, filter, correlate, and analyze events from applications and devices which output their logs in the CEF standard, utilizing the syslog transport protocol. For example you can use this powerful text-based log format to collect logs from your customized or home grown applications if you modify their output to the CEF standard.

About HBGary, Inc.

HBGary, Inc. was founded in 2003 to develop products to counter APT and other unknown cyberthreats. HBGary has in-depth expertise in advanced malware, rootkits, zero-day exploits, and targeted threats. Customers include Fortune 500 corporations, DOD and other U.S. government agencies. HBGary, Inc. is headquartered in Sacramento, Calif. with offices in the Washington D.C. area.

Related Downloads

Panda Security for Enterprise 4.50

Panda Security for Enterprise provides the most advanced proactive protection in a multi-tier flexible architecture covering all layers of the network. Its functionalities include network access and application control. Based on a combination of a...

MetaCompliance Enterprise Client 3.0

MetaCompliance Enterprise is a comprehensive solution that helps organizations simplify, achieve, and sustain IT security and compliance across the enterprise. MetaCompliance enables compliance and security managers to automate the creation and...

Assuria Auditor Console

Assuria Auditor Console 14.3

Assuria Auditor measures, manages and enforces security policies across a wide range of operating systems using a host-to-network view of critical systems and servers. Assuria Auditor assesses host security, detecting and reporting system security...

Security Configuration Manager

Security Configuration Manager 1.0

Security Configuration Manager is a snap-in component for MMC that is designed to provide a central repository for security-related administrative tasks.

With Security Configuration Manager, you will be able to use a common tool to...

SharePoint enterprise manager 4.9.5

Easily manage and administer your SharePoint security. SharePoint enterprise manager is a complete and powerful web-based solution for all SharePoint administration and permissions management needs.

Get SharePoint Enterprise Manager and...

Protegent Enterprise Security 2.1

Protegent Enterprise Security is an advanced security solution available for remotely managing the data security of a close knitted network. It has a centralized management console, which enables the administrators to manage data/information flow...

InfoLock 2.3

InfoLock is the most comprehensive tool in PC security. With a huge collection of features, InfoLock provides your data, the security it deserves. You can, not only provide security to your files, but also to your folders, drives and the system as a...

5nine Security for Hyper-V Free

5nine Security for Hyper-V Free 1.0.8.9

5nine Security for Hyper-V Free provides a comprehensive host-based / agentless security solution for Hyper-V hosts and virtual machines running on: Windows Server 2012/2012 R2, Microsoft Hyper-V Built-in Free 5nine Security and Compliance Scanner...

Check Point SmartConsole R70

Check Point SmartConsole R70 6.1

SmartDashboard is a single, comprehensive user interface for defining and managing multiple elements of a security policy: firewall security, VPNs, network address translation, web security, desktop security, anti-virus security, SmartDefense threat...

----Intelinet Internet Security 2009.07

Intelinet is global internet security leader. Winner of multiple awards from security experts throughout the world! Used by more than 9 million people worldwide, Intelinet is the most comprehensive destination for those looking for complete...