eIQnetworks Unveils IT Security Solution To Strike Back Against Cyber Attacks

ForensicVue enables complex correlation and forensic searches

May 9, 2012

4 Min Read


Acton, Mass. – May 7, 2012 – Despite all the promises made by SIEM vendors over the last decade, enterprise security analysts often have no way to know if their IT systems have been compromised by an advanced persistent threat (APT) or insider attack. In the face of more frequent, more prolonged and more advanced attacks, eIQnetworks has developed the first platform that gives true infrastructure-wide visibility into a large organization’s security posture.

Using the latest release of eIQnetworks’ SecureVue, security information analysts can perform complex correlation and forensic searches over long time periods. For example, analysts can now receive alerts when a valuable server is the target of a reconnaissance scan, then experiences failed login attempts, and then experiences a configuration change anytime within the next 90 days, even if no security events are present in the system’s log file. This allows organizations to be much more proactive in identifying activity that may be associated with APT’s. SecureVue’s multi-data cross-correlation capabilities and next-generation forensic search engine distinguish it as the only solution in the industry that provides true situational awareness.

“With eIQ’s new ForensicVue forensic search engine, included as a standard part of SecureVue, we are able to define a single search across system log, network activity, vulnerability, configuration, compliance and file integrity data with ‘Google-like’ ease and speed,” said Steven M. Brumant, MCP, Security+, Information Security Manager for Old Second National Bank. “Having the ability to quickly search billions of events in a matter of seconds and display correlated data in a single pane of glass allows us to stay ahead of the cyber attacks and meet needs for ad-hoc reporting and investigative analysis. Point security products, including traditional SIEM solutions, fail to give us the visibility or ad-hoc querying capability we need.”

eIQ’s SecureVue is the industry’s first platform to combine next-gen security information and event management, security configuration auditing, compliance automation and contextual forensic analysis – all in a single solution. SecureVue’s new forensic search engine delivers unmatched speed in searching and automatically profiling billions of data points (over 10TB per day of data) to help organizations realize the security benefits of big data analysis without the financial and technical challenges usually associated with big data. Best of all, SecureVue works with investments already made in security and compliance technologies, allowing organizations to gain a complete understanding of what’s going on across their entire environment.

Organizations currently using SecureVue to reduce costs, increase operational efficiency and improve “time-to-response” will see further gains from this update which showcases a number of improvements. eIQnetworks is hosting a webinar entitled, “Cybersecurity: The Enterprise Strikes Back Against the Cyber Dark Side!” on Tuesday, May 15, 2012, 1:00 p.m. - 2:00 p.m. EDT to demonstrate how SecureVue’s improvements allow it to deliver true infrastructure-wide visibility into a large organization’s security posture. To register for the webinar, visit: https://www2.gotomeeting.com/register/392288370.

“Addressing the concerns we’ve heard from many of the world’s most security-focused organizations, this new release of SecureVue offers expanded capabilities at a cost and efficiency that point products cannot touch, including multi-data cross-correlation, contextual forensic capabilities, speed, scale and real-time visibility,” commented Vijay Basani, president and CEO, eIQnetworks. “SIEM tools present data in log or event formats while SecureVue collects, correlates and reports all security data, leveraging existing point products or using its own agentless APIs, providing a true three-dimensional picture of what’s going on in the environment at any time.”


The new 3.6 version of SecureVue is currently available. Demonstration and evaluation in a customer environment is also available. For more information, visit: http://www.eiqnetworks.com/SecureVue/SecureVue.php. About eIQnetworks

eIQnetworks is the only global provider of a unified situational awareness solution, serving the largest enterprises around the world including government, financial, telecommunications, retail, pharmaceutical and healthcare. The company’s unified situational awareness platform, SecureVue®, delivers an accurate, timely and coherent view of the threat, compliance and risk posture via a single console. SecureVue provides real-time continuous security monitoring, compliance automation, configuration auditing and forensic analysis, all in a single solution. Vital to the protection of an organization’s infrastructure, SecureVue helps global enterprises proactively protect against cyber attacks, advanced persistent threats (APTs), data breaches and policy violations, so they can respond to incidents and implement security best practices. eIQnetworks is a privately held company headquartered in Acton, Mass. For more information, visit: http://www.eiqnetworks.com

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights