Discover Security That’s Highly Intelligent

DECEMBER 2014

ALIENVAULT

AlienVault Vision

Accelerating and simplifying threat

detection and incident response for IT

teams with limited resources, on day

one

Enable organizations of all sizes to

benefit from the power of crowd-

sourced threat intelligence & unified

security

Challenge: No Business is Safe Today

1Symantec Internet Security Threat Report 20132Ponemon “The Risk of an Uncertain Security Strategy”

Most organizations lack the time, resources &

expertise to monitor all of their technologies

90% of US businesses suffered some sort of hacking attack

50% of all targeted attacks were aimed at businesses with fewer

than 2,500 employees1

26% of SMBs have in-house expertise for achieving a strong IT

security posture2

44% of SMBs have adequate budget for achieving a strong IT

security posture2

Traditional Security is Complex and Expensive

Given the 10 most recommended technologies

and the pricing range, an organization could

expect to spend anywhere from $225,000 to

$1.46m in its first year, including technology and

staff.

Factor into this:

Initial licensing costs

Implementation / optimization costs

Ongoing management costs

Renewal costs

Integration of all security technologies

Training of personnel/incoming personnel

Source: The Real Cost of Security, 451 Research, April

2013

Recent Breach Disclosures

And Yet….

“There is growing recognition that

there is no silver bullet. Firewalls

and antivirus software alone cannot

keep hackers out...”

NY Times, 12/4/2014

Prevent Detect & Respond

The basics are in

place for most

companies…but

this alone is a

‘proven’ failed

strategy.

New capabilities to develop

The Solution

AlienVault USM:Discover Security That’s Highly Intelligent

Unified Security Management Platform

Accelerates and simplifies threat detection and incident response for IT teams with

limited resources, on day one

AlienVault Labs Threat Intelligence

Identifies the most significant threats targeting your

network and provides context-specific remediation

guidance

Open Threat Exchange

The world’s largest repository of crowd-sourced

threat data, provides a continuous view of

real-time threats

AlienVault Approach:

Unified Security Management

USM Platform

ASSET DISCOVERY

• Active Network Scanning

• Passive Network Scanning

• Asset Inventory

• Host-based Software Inventory

VULNERABILITY

ASSESSMENT

• Continuous

Vulnerability Monitoring

• Authenticated /

Unauthenticated Active

Scanning

BEHAVIORAL MONITORING

• Log Collection

• Netflow Analysis

• Service Availability Monitoring

SIEM

• SIEM Event Correlation

• Incident Response

INTRUSION DETECTION

• Network IDS

• Host IDS

• File Integrity Monitoring

Built-In, Essential Security Capabilities

Open Threat Exchange

What’s New in USM 5.0

Asset-Oriented Security

Simplified user interface,

views, and workflows

Customize workflows to

match how you want to

protect your network• Puts security and threat

information about your

systems, data, and users at

your fingertips

Makes it easier to get results

on day one

Create / Manage Groups More Easily

Create groups by selecting

any number or type of assets

from the asset list

Manage group membership

and group details from the

asset and group levels

Create any combination of

assets quickly and easily to

match your workflows and

best practices

Enhanced Asset Details

Identify vulnerabilities,

alarms, and other

security events in the

same view

Manage asset and

vulnerability scans as

well as availability

monitoring at the asset

level

Customize labels for

device attributes, helpful

when managing multiple

sites and/or clients

Leveraging Asset Groups

Gain insight about threats targeting the network and compliance status• e.g. for PCI-DSS: View

all activity, events, alarms, and logs by asset groups for in-scope assets

Aggregate vulnerability, alarm and event data for easy analysis at the group level

Enable asset and vulnerability scans for an entire group

Rapid Response Message Center

Centralized delivery of

all in-system

messages, errors,

warnings

Availability of updates

and patches

Security advisories,

documentation updates

and release notes

including defects fixed

Increases awareness

of system status and

changes to threat

landscape

DEMO

888.613.6023

ALIENVAULT.COM

CONTACT US

HELLO@ALIENVAULT.COM

Now for some Questions..

Questions? Hello@AlienVault.com

Twitter : @alienvault

Test Drive AlienVault USM

Download a Free 30-Day Trial

http://www.alienvault.com/free-trial

Check out our 15-Day Trial of USM for AWS

https://www.alienvault.com/free-trial/usm-for-aws

Try our Interactive Demo Site

http://www.alienvault.com/live-demo-site