Gigamon ThreatINSIGHT’s new features reduce investigation and response time
Gigamon, the leader in network visibility and analytics for digital innovators, announced the latest version of Gigamon ThreatINSIGHT, the cloud-native Network Detection and Response (NDR) solution.
ThreatINSIGHT uses Machine Learning (ML) and Gigamon Applied Threat Research (ATR) techniques to dramatically reduce investigation and response time. New features include:
- ML-based automated behavior profiling curated by ATR provides best-in-class detection capabilities
- Ability to identify and curate clusters of network events allowing incident responders to quickly identify impending threats
- OmniSearch provides rapid contextual correlation of events to dramatically reduce investigation time
- Power to leverage the Gigamon INSIGHT Cloud Data Warehouse which delivers access to all current and historical network activity metadata needed for comprehensive forensics and investigative efforts
“Time is everything for threat response and responders,” said Josh Carlson, Vice President and INSIGHT General Manager, Gigamon.
“With that principle in mind, we have enhanced ThreatINSIGHT with a series of detection and management features that takes an organization’s security posture to a new level, allowing our customers to focus on threat hunting and resolution, not maintaining their threat-hunting infrastructure.”
ThreatINSIGHT is the first application on the Gigamon Visibility and Analytics Fabric which delivers a next-generation approach to NDR through the combination of visibility, detection and analytics.
Gigamon is developing a growing ecosystem of partners to leverage the power of the Gigamon Visibility and Analytics Fabric to develop next-generation networking and security applications.
“As the cyberthreat landscape continues to evolve, ThreatINSIGHT has an advantage as a cloud-native, high-velocity network visibility, threat detection and response solution,” said Chris Kissel, IDC Research Director, Worldwide Security & Trust Products.
“With the complete visibility into network traffic only Gigamon can offer, they are now providing the mission-critical data needed to not only monitor and analyze, but also to act on malicious activity that can quickly cripple an organization.”
ThreatINSIGHT was built on ICEBRG, a cybersecurity vendor acquired by Gigamon in 2018. The solution provides advanced capabilities that a responder needs for modern threats: quality detections and a panoramic view into everything that a threat actor has done within their network, without the need to sift through logs or bounce between multiple disjointed tools.