Application security has become much more important for customers in order to meet compliance requirements and enact early incident mitigation by tying actions back to individuals. However, many application logs don't inherently provide the depth or breadth of information to ensure real security in a timely manner. Application protocol monitoring changes this reactive method of investigation to a proactive detection technology, while at the same time providing a higher quality of auditable evidence for both compliance purposes and incident response.
"Customers are already challenged in dealing with the volume of network security information flooding their systems and traditional application reporting has left them largely in the dark security-wise," said Mike Montecillo, security and risk management analyst, Enterprise Management Associates. "Combining layer 7 application security information with an investment in network and database monitoring, such as that from NitroSecurity, is a good strategy for companies who are looking for increased compliance and more rapid mitigation of the types of incidents that litter today's headlines."
The integration of Chronicle's technology allows direct correlation and analysis of protocols and applications, and fully decodes layer 7 packet information, allowing NitroView ESM to now collect deeper information about application use for both greater detail in forensic investigations and more effective incident response. For example, by collecting layer 7 information on an email session or Internet browsing, NitroView now has visibility to address the information, attachments and content of the email. Correlating this type of detail against database activity and other events, it's now possible to fully investigate security incidents and mitigate additional issues while providing proactive alerts on items like specific application policy violations.
"As showcased by the strong market reaction to our recent NitroView SIEM and DAM integration, customers are looking for unified security solutions that can streamline security monitoring and mitigation," said Ken Levine, chief executive officer, NitroSecurity. "Adding Chronicle's layer 7 capabilities to NitroView gives customers exactly what they need; increased visibility and actionable information at a speed and accuracy that advances active mitigation and answers complex compliance mandates."
Stop by the NitroSecurity booth, #745, at the RSA Conference this April to learn more about the future of application protocol management, log management, database activity monitoring and SIEM integration. For more information and to receive a free pass to the show, visit nitrosecurity.com/specials/rsa2009.
About NitroSecurity NitroSecurity develops security information and compliance management solutions that protect business information and infrastructure. NitroSecurity solutions reduce business risk exposure and increase network and information availability by providing actionable data intelligence to monitor, protect and alert organizations about suspicious or harmful network activities from inside or outside the enterprise. Utilizing the industry's fastest analytical tools, NitroSecurity will identify, correlate and remediate threats in minutes instead of hours, allowing organizations to quickly mitigate risks to the organization's information and infrastructure.
NitroSecurity serves more than 500 enterprises across many vertical markets, including healthcare, education, financial services, government, retail, hospitality and managed services. For more information, please visit www.nitrosecurity.com.