Tenable Network Security has announced new real-time security and compliance intelligence capabilities for its industry leading SecurityCenter Continuous View (CV) platform. As a result, Tenable is the first security provider to offer active scanning, passive network monitoring and security information and event management (SIEM) in a unified platform – eliminating the need for custom integration, manual data normalisation, and point product management.
SecurityCenter CV will now include Tenable’s Log Correlation Engine (LCE). While still available as a standalone product, security professionals can now easily integrate the security intelligence from logs, events, and network data available for advanced vulnerability management.
“Changing enterprise landscape of mobile, cloud, and virtual infrastructure, sophisticated threats, and new security and compliance frameworks makes the inclusion of log analysis essential”, said Ron Gula, CEO Tenable Network Security. “ Most would agree that SIEMs have not delivered on their promise. Putting log and event analysis in service of advanced vulnerability, threat, and compliance management can change the game for security analysts, auditors, and enterprise risk managers.”
SecurityCenter CV customers’ licenses are automatically extended to include a five (5) terabyte capacity LCE component. Additional capacity is available. The following highlight new capabilities added to the solution:
* Enables discovery and inventory of 100% of IT assets both authorised and unauthorised in any network topology. LCE agents provide an additional asset discovery method for networks with limited or complex segmentation.
* Automatically identifies sophisticated attacks through real-time normalisation and correlation of vulnerability, threat intelligence, malicious process detection, and anomalous communication relationships.
* Makes use of indicators of compromise and other third-party intelligence to identify systems already exploited.
* Addresses log management and vulnerability management requirements of many regulations and standards, such as FISMA and PCI, from Tenable’s extended solution.
New “outcome-based” security initiatives including the SANS Top 20 Critical Security Controls program, DHS Continuous Diagnostics and Mitigation (CDM) program, and NERC CIP v5 that align security and compliance are fully supported.