New hardware and software extend use cases for MSSPs and Enterprises looking to detect and stop hackers earlier
As part of Stellar Cyber’s Open XDR platform, these new sensors are particularly ideal for MSSPs who want to offer SOC-in-a-box services to a broader set of customers that may have a smaller footprint, yet still want comprehensive security coverage at a competitive price. Enterprises with distributed environments now can ensure they deploy the same detection strategies and telemetry collection methods, regardless of any multi-cloud, multi-prem or remote office setup. This architecture also is optimal for retailers, academic institutions, utilities, manufacturers, financial institutions, and healthcare providers.
“Rapid response to security incidents often requires having sensors in close proximity to the devices being attacked,” said Jon Oltsik, Sr. Principal Analyst at ESG. “By reducing the cost of sensors in many use cases, Stellar Cyber is contributing to companies’ ability to improve overall enterprise security posture and responsiveness.”
Multi-Modal Detections Made Possible:
To combat today’s advanced cyberattacks, security teams must focus on making step-change improvements to Mean-Time-To-Respond (MTTR) and dwell time. To achieve this, complete 360-degree visibility must be realized across every environment. Not surprisingly, creating blind spots is the fastest way to impair a security team’s performance. Stellar Cyber’s new sensors enable log collection and API data collection at the edge, as well as a secure channel for orchestrating response to local security tools like firewalls and Active Directory. Additionally, these sensors natively perform Deep Packet Inspection (DPI) and Network Traffic Analysis to generate additional visibility.
Visibility, however, is not enough to dramatically improve MTTR and dwell time. Security detections must be deployed as close as possible to where attacks happen – that is, deployed to the edge in a distributed fashion. Detections at the edge reduce central processing and data volumes, and ultimately lead to much faster response. The Stellar Cyber sensors natively include Intrusion Detection System (IDS), NTA, Anti-Virus and Malware Sandbox, all packaged together, to facilitate detections at the edge. Stellar Cyber uses the term “multi-modal detections” to describe its combination of edge detections and centralized detections in a single platform, both leveraging Machine Learning (ML) and heuristic signatures.
Sensor Functions:
These newly released sensors work as the eyes and ears of Stellar Cyber’s Open XDR platform, collecting the telemetry on attacks from any part of the network. They can be deployed in any form factor, virtual or physical, and in any size environment, from home office to a bandwidth-intensive data center. Importantly, they all possess the same rich capabilities, including:
- Log processing and forwarding
- Deep packet inspection (DPI) and network traffic analysis (NTA) for 3500+ network applications
- Intrusion Detection System (IDS)
- Anti-Virus (AV)
- Sandbox for zero-day malware detection
- Asset discovery
- Secure channel for orchestrating response to the local security tools like Firewalls or AD.
- Data buffering
- Centralized management including provisioning, monitoring, software upgrade, etc.
Security teams can trust the consistency of data collection and detections across all environments. The sensors deployed in smaller footprint environments are highly affordable, so teams can greatly enhance security visibility without prohibitive cost.
“Organizations have many different types of environments, yet they all need to implement consistent, multi-modal detection and response mechanisms to fully protect against today’s attacks,” said Sam Jones, Vice President of Product Management at Stellar Cyber. “By dramatically lowering the cost of sensor deployment, Stellar Cyber makes it possible for organizations anywhere to achieve more complete security coverage.”
Resources:
- Stellar Cyber Sensors data sheet
- Stellar Cyber security operations platform
- Stellar Cyber case studies
- Stellar Cyber blogs
About Stellar Cyber:
Stellar Cyber Open XDR platform delivers comprehensive, unified security without complexity, empowering lean security teams of any skill to successfully secure their environments. With Stellar Cyber, organizations reduce risk with early and precise identification and remediation of threats while slashing costs, retaining investments in existing tools, and improving analyst productivity, delivering a 20X improvement in MTTD and an 8X improvement in MTTR. The company is based in Silicon Valley. For more information, contact http://stellarcyber.ai.
Contact:
Charlie Rubin
Story PR
[email protected]
510-908-3356
END