Gartner names proofpoint a leader in 2014 Magic ... » London, UK: Proofpoint, Inc. has been positioned by Gartner, Inc. in the leaders quadrant of the 201... Tenable's Nessus v6 Eliminates cybersecurity blind... » COLUMBIA, Md./LONDON, UK: Tenable Network Security, Inc. has announced the release of Nessus® v6, re... New German heavy tanks bring serious firepower i... » Wargaming announced today the launch of the latest content update for its free-to-play console multi... Babcock to run Defence Support Group » The Ministry of Defence (MOD) has today announced the preferred bidder for the Defence Support Group... Free white paper explains how network access can... » London: According to the International Telecommunication Union (ITU), there are now as many mobile p... Kroll Ontrack published list of worst data disaste... » EPSOM: Kroll Ontrack announced its 12th annual list of the top 10 data disasters from 2014. For the ... UPnP Forum invites organizations to use UPnP+ Cert... » UPnP Forum has launched its UPnP+ Certification level for improved device and open source implementa... CNL Software to present PSIM at Teleste Video Su... » CNL Software will be participating in the Teleste Video Surveillance Summit in Dubai on December 7, ... ExtraHop integrates with FireEye to defend against... » LAS VEGAS, NV: ExtraHop has announced an integration of the ExtraHop wire data analytics platform wi... New technology helps financial institutions mana... » Pole Star launches PurpleTRAC risk management and sanctions compliance technology enabling global fi...

CLICK HERE TO

Advertise with Vigilance

Got News?

Got news for Vigilance?

Have you got news/articles for us? We welcome news stories and articles from security experts, intelligence analysts, industry players, security correspondents in the main stream media and our numerous readers across the globe.

READ MORE

Subscribe to Vigilance Weekly

Information Security Header

Cloud-based security easily integrates web logs into HP ArcSight, IBM QRadar and Splunk; enables deeper data analysis and digital security forensics; meets compliance requirements

LONDON (UK): Zscaler, the global security cloud for the mobile enterprise, today announced its Nanolog Streaming Service (NSS), a simplified real-time integration with leading security information event management (SIEM) solutions from HP ArcSight, IBM QRadar and Splunk. Zscaler NSS delivers deeper data analysis and digital security forensics while satisfying compliance requirements – all without demanding the domain expertise required to integrate these point solutions.

“Zscaler NSS enables large enterprises to filter and correlate global log data into the organisation’s SIEM in real-time,” said Manoj Apte, senior vice president of product management, Zscaler. “Unlike security appliances that provide syslog, Zscaler’s Nanolog technology correlates transactions from around the world across multiple dimensions every second. This enables enterprise to filter and feed exact events that they care about into their SIEMs rather than investing in a massive logging infrastructure.”

Typical large organisations generate more than 20GB of log data every day, yet struggle to obtain a complete view across complex and distributed cloud and mobile environments, making it difficult to analyse traffic patterns for anomalies and security vulnerabilities. Additionally, it is nearly impossible for SIEM solutions to integrate the volume and flow of this data from multiple sources without additional investment in professional services to develop point integrations. Despite this, many organisations are faced with compliance regulations that require this data to be stored locally for future audit and analysis.

“The value of ‘big data’ is only as great as our ability to correlate, analyse and understand it,” said Bobby Clarke, Information Assurance Manager, Sealed Air. “Working with Zscaler NSS enables us to easily integrate, archive and investigate our security data with SIEM solutions to provide actionable intelligence.”

Zscaler NSS automates the real-time integration of its comprehensive log data into leading SIEM solutions from HP ArcSight, IBM QRadar, and Splunk without requiring administrators to understand each complex integration format. As log data is generated by all users, across all devices and locations, Zscaler NSS easily streams compatible data into the SIEM in real time.

"Many organisations are struggling to get visibility of user activity and behavior in the cloud. ZScaler NSS is an important information stream for SIEM solutions and delivers in-depth visibility of user and threat activity within the cloud," said Jason Corbin, director, security intelligence strategy and product management, IBM. "Combined with QRadar's ability to analyse all the other security, application, network activity, user and vulnerability data within an organisation, the Zscaler NSS feed adds yet more context around security threats such as malware or out of policy behavior in the cloud. This enhances QRadar's ability to deliver highly prioritised incidents to its users."

Zscaler NSS is a flexible and customisable solution, capable of integrating multiple streams of logs into different SIEMS and pre-processing logs to filter relevant sub-sets of data. Zscaler complements the deep data analysis capabilities of SIEM solutions by providing a comprehensive view into user activity on any device in any location.