NetWitness And ArcSight Partner

NetWitness announces certification by ArcSight in compliance with its Common Event Format (CEF) standard

May 5, 2010

3 Min Read


HERNDON, Va., NetWitness, the world leader in advanced threat detection and real-time network forensics, announced certification by ArcSight (Nasdaq: ARST) of compliance with its Common Event Format (CEF) standard. ArcSight CEF certification ensures seamless interoperability and support between NetWitness' industry-leading threat management solution and ArcSight's security information and event management (SIEM) platform. The joint solution brings together best in-class technologies to provide a high level of situational awareness for security operations centers and incident response teams.

"Today's threat environment requires deeper cyber threat awareness and the technical agility to respond proactively to morphing threat vectors," said Eddie Schwartz, Chief Security Officer, NetWitness Corporation. "The joint solution of NetWitness and ArcSight provides both the content-driven security analytics to enhance existing ArcSight notifications, as well as powerful and unique threat alerts that only can be generated by the real-time network forensics of NetWitness NextGen™. The effort with ArcSight to certify NetWitness as CEF compliant is part of our ongoing strategy to contribute to a next generation enterprise security management ecosystem that rapidly produces effective results when responding to advanced threats and complex network events."

"With the evolution of Adaptive Persistent Adversaries, it is critical that our protection strategies seek to notice the whispers and echoes at all points within our environments," said Joshua Corman, Research Director for Enterprise Security at The 451 Group. "We're promoting the notion of greater visibility and integration as part of an Incident Response Workbench. This is a strong and logical teaming with clear benefits."

NetWitness' CEF certification by ArcSight highlights just one of several features in the NetWitness product suite that enables easy enterprise security integration and interoperability with the majority of network security and infrastructure products deployed throughout enterprises. NetWitness' state of the art capabilities provide a powerful way for enterprises to obtain clear, actionable information on advanced threats, accelerate incident response, determine incident impact, and continuously monitor their networks in real-time. The flexible, modular architecture of NetWitness NextGen 9 provides these capabilities across the largest and most complex enterprise networks.

"Rapid incident analysis is critical when an organization is dealing with a modern cyber-attack," said Jeff Scheel, Senior Vice President of Business Development at ArcSight. "NetWitness' advanced network forensics provide a powerful set of tools for delivering critical information to enterprise security analysts. Together with the ArcSight SIEM Platform, they allow companies to see, understand and manage the advanced threats that are significant enterprise security risks."

NetWitness customers and partners have immediate access to the implementation guide on the NetWitness Customer Support Portal as well as on ArcSight Protect 724.

About NetWitness

NetWitness' Corporation is the world leader in network forensics and automated threat intelligence solutions, helping government and commercial organizations discover, prioritize and remediate complex IT risks. NetWitness solutions concurrently solve a wide variety of information security problems including: advanced persistent threat management; sensitive data discovery and advanced data leakage detection; malware activity discovery; insider threat management; policy and controls verification and e-discovery. Originally developed for the US Intelligence Community, NetWitness has evolved to provide enterprises around the world with breakthrough methods of network content analysis and host-based risk discovery and prioritization. NetWitness customers include Defense, National Law Enforcement and Intelligence Agencies, Top US and European Banks, Critical Infrastructure, and Global 1000 organizations. NetWitness has offices in the U.S. and the U.K. and partners throughout North and South America, Europe, the Middle East, and Asia.

To download the freeware version of NetWitness Investigator, visit . For more information about securing your entire organization with NetWitness NextGen, contact: [email protected] . Twitter handle: @NetWitness .

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights