Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor
ProSecurityZone Sponsor

QRadar 7.0 Provides Real Time Monitoring of Social Media Usage

Q1 Labs : 28 September, 2010  (New Product)
The latest version of the security information and event management system from Q1 Labs enables effective policy enforcement for internet usage with real-time visibility of social media activity
Q1 Labs has introduced the next version of its security information and event management (SIEM) product, QRadar 7.0, complete with the ability to monitor activity on social media platforms and multimedia applications such as Twitter, Facebook, Gmail, LinkedIn and Skype, among others.

QRadar 7.0's anomaly detection and configurable content capture via deep packet inspection (DPI) make it easy to detect Web-based malware; what vulnerabilities are introduced to the environment when applications are accessed; and the types of information users are making public - all in real-time. This granular level of visibility enhances QRadar 7.0 as the most intelligent, integrated and automated SIEM on the market.

QRadar 7.0 has numerous capabilities that are both new and enhanced from QRadar 6.3; highlighted below are a few emerging use case examples of how QRadar provides the most security intelligence in time and location aware-context for customers:

* Social media monitoring and correlation: the ability to monitor the usage of social media from within a customer's network. This includes the ability to identify which users are accessing which social media services, determine the volume and pattern of usage, and inspect and alert on the content being transmitted to those services. Social media usage can also be correlated against other network and log activity within an enterprise - e.g. the transmission of data to a social media site immediately following the user accessing a sensitive internal resource.

* User and application anomaly detection: the ability to detect anomalous behavior of both network and application usage by specific users. Excessive or out-of-profile behaviour can be detected for example, out-of-hours or excessive usage of an application or cloud-based service, or network activity patterns which are inconsistent with a system's or user's historical profile.

* Client-side vulnerability profiling: the ability to identify a network's most vulnerable assets, and then detect and alert immediately when these systems engage in activity that potentially exposes those vulnerabilities. For example, customers can scan their networks for unpatched applications, devices and systems, determine which ones connect to the Internet, and prioritize remediation actions based on the risk profile of each application.

According to Mark Nicolett, VP Distinguished Analyst - Security Privacy & Risk, at Gartner, in the recent report entitled "Security Monitoring and Assessment for Cloud Environments", "Application activity monitoring is important because application weaknesses are frequently exploited in targeted attacks, and because abnormal application activity may be the only signal of a successful breach or of fraudulent activity."

"We deployed the QRadar Security Intelligence Platform in order to meet PCI compliance mandates and ease the auditing process," said Laurence MacCall, Chief Architect, IT / Security for F W Webb Company. "Being able to monitor social networking sites via QRadar 7.0 will bring us to the next level in terms of not just meeting compliance mandates, but surpassing them. QRadar 7.0 will enable us to see if our customers' personally identifiable information is at risk of being shared outside of the company; this will allow us to achieve true security intelligence, rather than just the 'check box' for compliance."

"Being a university, we provide network access to a multitude of consituents and devices. This presents a great challenge and risk to any environment. We selected the QRadar Security Intelligence Platform because it was the only solution to natively include flow collection and analysis," said Jim Beechey, Networks and Information Security Associate Director at Northwood University. "When malicious or anomalous activity occurs on our network, we are able to use QRadar to help determine what happened, and whether further investigation is required. There have been multiple occasions where we have used QRadar after a compromise to determine details of the event. No other vendor was able to provide that level of intelligence."

"Companies today face the increasing challenge of keeping their networks safe from hackers that have evolved, and that are taking advantage of new avenues of attack - such as social networking sites and applications utilized by partners, outsourcers and employees," said Sandy Bird, co-founder and CTO of Q1 Labs. "They are also faced with keeping productivity up, due to the 'always-connected' mentality of employees that want to be constantly connected to their social networks. Leveraging our native capabilities for DPI and content capture, the new version of QRadar allows companies to see into what social media applications are being used on their networks, and determine what types of threats come to light if these types of applications are allowed."

This version of QRadar 7.0 is an essential deliverable of the Security Intelligence Operating System that Q1 Labs announced recently. The QRadar Security Intelligence Operating System provides a unified architecture for collecting, storing, analyzing and querying log, threat, vulnerability and risk related data. The combination of enhancements and strategic improvements unveiled in QRadar 7.0 bring Q1 Labs to the head of the line within the SIEM and Log Management space, while at the same time continuing to expand Q1 Labs' reach into new markets, such as Risk Management, which enables customers to have a single integrated solution for all their security and risk monitoring needs.
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo