http://misoft.com.vn/cpst2010/CPST_Web-banner.gif

ArcSight

ArcSight, an HP company, is a leading global provider of cybersecurity and compliance solutions that protect organizations from enterprise threats and risks. Based on the market-leading SIEM offering, the ArcSight Enterprise Threat and Risk Management (ETRM) platform enables businesses and government agencies to proactively safeguard digital assets, comply with corporate and regulatory policy and control the internal and external risks associated with cybertheft, cyberfraud, cyberwarfare and cyberespionage. For more information, visit www.arcsight.com.

 

How Can You Protect Your Universe?

PROBLEM:

More Threats, More Risk, More Pain

Keeping your organization safe and secure can be a daunting task. Bots, worms, and hackers threaten it from the outside. Data breaches, theft, and fraud threaten it from the inside. A bad economy only magnifies the problems. At the same time, increasing regulations and fines highlight the risk of failure in preventing these threats. It’s never been more challenging to protect your business. As a result, the value of automated security and compliance monitoring has never been higher.

SOLUTION:

Complete Visibility to Fix Problems Early

The ArcSight Enterprise Threat and Risk Management (ETRM) platform helps safeguard your business by giving you complete visibility into activity across the IT infrastructure: external threats such as malware and hackers; internal threats such as data breaches and fraud; risks from application flaws and configuration changes; and compliance pressures from failed audits. ArcSight ETRM includes the industry’s leading security information and event management (SIEM) products for collecting, analyzing and assessing security and risk event information. The result is rapid identification, prioritization and response to policy breaches, cybersecurity attacks and insider threats. Only ArcSight correlates logs, user roles, and network flows to understand the who, what and where of information security. For six consecutive years, Gartner has positioned ArcSight in the Leaders quadrant for SIEM, and IDC has once again named ArcSight as the SIEM market share leader.

What Can ArcSight ETRM Do For You?

Protect Critical Assets and Information

Real-time monitoring of key assets such as file servers, control systems and databases helps detect signs of trouble when it is still possible to prevent disaster. The ArcSight ETRM platform analyzes the many pieces of information and evaluates risks across your enterprise to act as an early warning system for your business.

Improve Troubleshooting and Investigations

The pressure is on to collect and store audit-relevant log data from numerous sources. Without effective log management, it becomes nearly impossible to sift through the terabytes of information and isolate the events needed to support an audit or investigation. ArcSight can help your enterprise store and manage massive volumes of log data to enable fast troubleshooting, forensics analysis or automated compliance reporting.

Monitor User Accounts for Unusual Activity

Has an administrator’s account been compromised by hackers? Is a call center representative stealing customer credit card data? Is a terminated employee accessing his old accounts? Only ArcSight can provide a 360-degree view of your systems and users to tell you who is on your network, what they are doing and if it’s okay. ArcSight links user, group and role information with actual network and application activity to provide verified connections between actual people (not just an IP address) and potentially high-risk activities.

Lower the Cost of Compliance

Regulations continue to increase and compliance remains a top business initiative. To avoid the penalties of failed audits, organizations must show that their controls are effective and that their business systems are robust enough to fend off attack and protect confidential information. ArcSight pre-built regulatory compliance packages provide “out of the box” mapping to specific requirements. The result is automated compliance reporting and continuous compliance control oversight, resulting in lower effort and operational costs with more protection.

The ArcSight ETRM Platform

ArcSight ESM

  • Detect and stop threats that you can’t predict
  • Automate pattern analysis and anomaly detection
  • Protect critical application transactions
  • Secure sensitive data

ArcSight Logger

  • Store any and all enterprise log data
  • Manage years of data on a single instance
  • Search terabytes of logs in seconds
  • Automate compliance reporting
  • Gain business intelligence for logs

ArcSight Express

  • Deploy all-in-one correlation and log management
  • Automate security operations
  • Cut time and costs with pre-built rules, reports and dashboards
  • Enjoy lightning-fast search of terabytes of log data

ArcSight IdentityView

  • Monitor privileged user activity
  • Attribute shared account usage to specific individuals
  • Detect activity by terminated employees or contractors
  • Produce 360-degree user activity reports
  • Detect role violations across applications

ArcSight Connectors

  • Collect from any data source with hundreds of prebuilt connectors
  • Create new connectors with a simple toolkit and wizards
  • Evolve your network and retain consistent security monitoring

ArcSight Compliance

  • Automate continuous controls monitoring
  • Produce audit-ready compliance reports
  • Leverage pre-built regulatory dashboards

 



 Back to top