1 www.cyphort.com

Technology Solution Brief : Cyphort and Gigamon

TECHNOLOGY SOLUTION BRIEF

Scalable and Reliable Advanced Threat Detection and MitigationThe Challenge

As cyber criminals and their attack strategies outpace detection and challenge cyber security efforts worldwide, the global threat landscape continues to evolve. Today, hacking is a highly organized, malicious profession with clear economic and strategic objectives. Global cyber crime and espionage activity costs the global economy anywhere from $100 billion to $500 billion annually, according to most industry reports. The average annualized cost of cyber crime in a study conducted by Ponemon Institute on 60 U.S. companies was $11.6 million a year, with a range of $1.3 million to $58 million.

As organizations start to deploy advanced threat detection and mitigation solutions, scalability, visibility and robustness of deployment becomes paramount. Several security technologies depend on passive network deployment requiring port mirroring to copy traffic for analysis, this puts a stretch on an organization’s already limited SPAN/TAP ports and limits the visibility and scalability. Additionally, widespread use of SSL has provided an avenue for malware to hide itself from security monitoring and detection.

The Gigamon and Cyphort Joint Solution Overview

Cyphort and Gigamon have collaborated to create a solution that provides real-time threat protection against modern attacks offering the most flexible deployment options coupled with SSL traffic visibility and robust performance. The combination of the Cyphort platform and the Gigamon® Visibility FabricTM architecture ensures all traffic is analyzed and threats are detected in real time, allowing administrators to quarantine or delete harmful data before it gets inside the network.

The Visibility Fabric architecture delivers pervasive and dynamic traffic visibility from across the physical and virtual network environments to centralized tools that manage, analyze and secure the network. This approach can extend the network reach of the tools to significantly improve return on investment, allow organizations to more efficiently manage and secure their network, and provide a solution that can quickly evolve and scale as network needs change.

Cyphort Advanced Threat Defense Platform is a software solution that provides protection from advanced threats. The Cyphort Solution continuously monitors the network traffic to detect advanced threats, assesses risk to an organization based on the threat severity and local context and provides threat containment by leveraging existing enforcement infrastructure e.g. Firewalls, Secure Web Gateways and IPS.

Key Benefits

Scale out Advanced Threats Mitigation solution deployment

Get visibility into the threat activity within encrypted web traffic

Reduce effort, time and cost of remediation

Improve security by identifying and blocking malware early in lifecycle

2 www.cyphort.com

Technology Solution Brief : Cyphort and Gigamon

Learn More

For more information on Cyphort and Gigamon solution, contact:

Gigamon 3300 Olcott Street Santa Clara, CA 95054 Phone: +1 (408) 831-4000 www.gigamon.com

How the Joint Solution Works

Gigamon’s Visibility Fabric architecture provides an additional layer of visibility and traffic mirroring to 1Gb and 10Gb tools for comprehensive analysis and protection. Deployed out-of-band, the GigaVUE® fabric node aggregates, filters and replicates traffic flows, sending a copy of the relevant production traffic including decrypted SSL traffic across multiple Cyphort Collectors. Using Gigamon’s patented Flow Mapping® technology, data can be directed to any number of Cyphort Collectors at line rate with no data loss.

With GigaStreamTM, Gigamon’s unique trunking technology, incoming traffic flows can be load balanced and distributed across multiple Cyphort Collectors, for thorough traffic analysis and optimal device performance and longevity.

About Gigamon

Gigamon provides an intelligent Visibility Fabric™ architecture to enable the management of increasingly complex networks. Gigamon technology empowers infrastructure architects, managers and operators with pervasive visibility and control of traffic across both physical and virtual environments without affecting the performance or stability of the production network. Through patented technologies, centralized management and a portfolio of high availability and high-density fabric nodes, network traffic is intelligently delivered to management, monitoring and security systems. Gigamon solutions have been deployed globally across enterprise, data centers and service providers, including over half of the Fortune 100 and many government and federal agencies.

About Cyphort

Cyphort is an innovative provider of Advanced Threat Protection solutions that deliver a complete defense against current and emerging Advanced Persistent Threats, targeted attacks and zero day vulnerabilities. The Cyphort Platform accurately detects and analyzes next generation malware, providing actionable, contextual intelligence that enables security teams to respond to attacks faster, more effectively, and in as surgical a manner as their attackers. Cyphort’s software-based, distributed architecture offers a cost effective, high performance approach to detecting and protecting an organization’s virtual, physical and cloud infrastructure against sophisticated attacks. Malware detection for Windows, OSX and Linux allows businesses to extract maximum value from IT assets without compromising the security of an organization. Founded by experts in advanced threats from government intelligence agencies and premier network security companies, Cyphort is a privately held company headquartered in Santa Clara, California. For more information, please visit: www.cyphort.com

Sales/Customer Support1-855-862-5927 (tel)1-855-8-MALWARE (tel)1.408.540.1299 (fax)Email: support@cyphort.com

© 2015 Cyphort, Inc. All rights reserved.

CYPHORT, Inc.5451 Great America Parkway Suite 225Santa Clara, CA 95054P: (408) 841-4665F: (408) 540-1299