Real-time inclusion of outbound web activity enhances automated decision-making and speeds time to resolution.
October 16th, 2018, Mountain View, CA – Respond Software, innovators in Security Decision Automation Software, today announced the availability of the Respond Analyst’s Web Filter Analysis model, a first-of-its-kind component that emulates the judgement of a security expert when investigating Web Proxy or URL Filtering data for malicious activity at real time.
The new model adds streaming monitoring, analysis and triage capabilities for Symantec ProxySG (formerly BlueCoat) and Palo Alto Networks URL Filtering; escalating incidents determined by facts observed from the Web Proxy data combined with enterprise context and threat intelligence information.
When used with Respond’s Network Intrusion Analysis and Malware Event Analysis models, the Respond Analyst’s cross-sensor capability reliably determines the likelihood of security situations like command and control, data exfiltration and dangerous or spreading malware infections.
Hidden Gems in Web Filtering Data
Stealthy attacks that are ‘living off the land’ often communicate outbound and are detected by web proxies and URL filtering via next-generation firewalls. The Respond Analyst’s Intelligent Decision Engine, PGO®, extracts relevant evidence from this data stream leading to more reliable decisions and a more complete picture of the attack and its objective. The addition for web filtering data to Respond Analysts’ decision-making enables security teams to respond more quickly and thoroughly before significant damage is done.
“It’s not often that I say ‘wow’ when I hear an idea but I did when I heard about Respond Analyst” , Ed Amoroso, TAG Cybers. “Respond helps modernize security operations and improve the quality and capacity of analysis being performed.” (Download TAG Cyber 2019 ‘Outlook for Cyber Security Controls’)
More Data Equals Better Decisions – Faster
Most attacks contain elements of inbound, lateral and outbound activity – each offering a unique opportunity to detect the attack in progress. Web filtering data improves Respond Analyst decision-making skills by providing visibility into outbound web activity, leading to more reliable decisions.
“We continue to build Respond Analyst skills to help security teams of all sizes respond to security incidents rapidly and cost effectively,” states Chris Calvert, Co-founder and VP of Products at Respond Software. “Adding monitoring and analysis capabilities for web filtering expands Respond Analysts’ Decision Engine and gives our customers increased confidence that they are spending their time on security situations that matter, rather than chasing false positives.”
Respond Analyst is at work for security teams within energy, retail, financial services and higher education organizations and has made hundreds of millions of decisions – escalating vetted security situations when response is required.
Respond Software delivers instant return on investment (ROI) to organizations in their battle against cyber-crime. With its patent-pending intelligent decision engine, PGO, Respond Software’s product uniquely combines the best of human expert judgement with the scale and consistency of software. Our quick-to-implement cyber-security automation software delivers the equivalent of a virtual, best-of-breed analyst team that dramatically increases capacity and improves monitoring and triage capabilities at a fraction of the cost. Respond Software was founded in 2016 by security and software industry veterans.
Symantec and Symantec ProxySG are trademarks of Symantec Inc. Palo Alto Networks is a registered trademark of Palo Alto Networks, Inc.
About Respond Software
Respond Software redefines Security Operations by enabling expert analyst capability and capacity at dramatically lower cost. The Respond Analyst, driven by its patent-pending Probabilistic Graphical Optimization (PGO)™ technology, emulates the decision-making of an expert security analyst, effectively becoming a SOC team member that specializes in high-volume, low signal use cases while it learns, adapts and maintains an organization’s tribal knowledge 24x7x365. Respond Software was founded in 2016 and is based in Silicon Valley. Its security and enterprise software veteran team, world-class investors, and customer base are building technology for the SOC of the future.
Tim Wenzlau is a Product Manager at Respond Software. He is focused on adding skills to the Respond Analyst--continuously improving the Respond Analyst’s intelligence, visibility, awareness, and user experience. Prior to Respond Software, Tim managed and launched a user behavior product and held various roles in corporate development, strategy, and business operations. Tim holds a degree in Operations Research and Financial Engineering from Princeton University.View all posts by Tim Wenzlau
Join our growing community! Subscribe to our newsletter, the "First Responder Notebook," delivered straight to your inbox.