RSA Security Analytics, the new big data security analytics product from RSA, commercial release planned Q1-2013 and focusing on providing more effective security monitoring.
RSA currently has enVision in their portfolio that provides SIEM capability and Netwitness that provides advanced network forensics and analysis, both products can be offered separately or combined together for an integrated view of both logs and packets in your environment, still the combined solution is not suitable for SMB markets due to the associated high pricing.
With Security Analytics, RSA is looking for providing more effective threat detection and faster security investigations specially in the big data arena, nothing official yet but the news that RSA will offer different packages that suits small, mid and enterprise markets through hybrid appliances that capable to capture packets, collect logs and provides analytics on same appliance for small markets.
First look on RSA SECAnalytics, it provides the following:
By combining security data collection, management and analysis with full network packets’ capture and log-based visibility and threat intelligence into ONE SINGLE VIEW. Surely this will help in gain more visibility, minimize the impact of the attack and reduce the attackers’ free time in the environment.
RSA Security Analytics unifies the views of detection, collection “both logs and packets”, analysis, investigation, reporting and system administration into one single web HTML5 dashboard, unlike the current integration between enVision and Netwitness that integrates the backend information intelligence but in different interfaces.
SECAnalytics offering and structure ranges from single appliances deployments to distributed architecture using as many as multiple dozens of physical appliances, this surely will meet different environments’ requirements.
From that initial look, RSA Security Analytics is going to be beyond the traditional security strategies that depend on signature-based or perimeter-based controls, it will be an early warning system for security threats inside your environment.
In upcoming articles and reviews, we will talk in more details about RSA Security Analytics architecture and how it works once more information is announced from RSA.
Trailer Video for RSA Security Analytics from RSA Secured Channel: