RSA, the security division of EMC, today announced Security Analytics, its tool for real-time analysis of large amounts of data from security and business information to determine if an organization is being attacked, especially by stealthy threats intent on stealing sensitive information.
According to Paul Stamp, director of product marketing, Security Analytics combines technology from RSA's former threat-detection product NetWitness used in conjunction with the RSA security-event and information management product, enVision. The open-source Hadoop database is another component in Security Analytics that companies with massive amounts of data would use for threat-detection purposes.
[Background: IBM Security tool can catch insider threats, fraud]
The RSA announcement comes on the heels of a similar one from IBM related to its IBM Security Intelligence with Big Data tool, which also makes use of Hadoop.
Stamp says RSA's approach in Security Analytics, which is sold as an appliance, is flexible to allow capture of packet data and log information to be analyzed for security purposes. He says it's not mandatory that the RSA SIEM be used — other SIEM products would be expected to work in RSA's approach — but he advised use of enVision for "better functionality."
The Security Analytics tool starts at $70,000.
Ellen Messmer is senior editor at Network World, an IDG publication and website, where she covers news and technology trends related to information security. Twitter: MessmerE. E-mail: firstname.lastname@example.org.