IT For CEOs & CFOs
News & Views
NETSCOUT upgrade improves digital resilience and security
​
Enhancements to NETSCOUT’s Omnis Cyber Intelligence’s new MITRE ATT&CK® will enable earlier detection of advanced threats such as ransomware, suspicious traffic, or unauthorized access attempts, improving remediation to help meet industry and country compliance requirements to give customers’ greater digital resilience and a higher security posture.
“Digital resilience allows enterprises to continuously operate and quickly leverage digital opportunities to serve their customers, especially during economically challenging times,” explains Fernando Montenegro, Senior Principal Analyst, Omdia. “A mature cyber strategy is key to digital resilience, and comprehensive security controls require organizations to deploy technology such as Omnis Cyber Intelligence to continuously monitor their networks, so they can react to and mitigate threats early before they impact their operations.”
New Omnis Cyber Intelligence enhancements include: a new security events dashboard that can easily be toggled to show events aligned to ATT&CK tactics and techniques, enabling security teams to quickly prioritise, investigate, and remediate threats; expanded behavioural analytics at the source allows for the early detection of advanced multi-staged attacks, such as ransomware and unusual network traffic, before major impact occurs; and malicious file detection will enable Omnis Cyber Intelligence to detect known and unknown zero-day threats.
Along with IP address, host and machine name identification has been added to alerts, enabling SecOps teams to accurately identify, investigate, and remediate threats. Whilst a new open framework that can quickly integrate with third-party solutions such as firewalls, endpoint detection (EDR), and SIEM/SOAR/XDR platforms enables real-time response to incidents, such as blocking malicious IP addresses with firewalls or isolating compromised endpoints.
“NETSCOUT helps its customers strengthen their digital resilience by enabling easier detection, faster response, and more effective recovery from cyber threats. The new functionality we’ve added to our Omnis Cyber Intelligence platform helps organizations improve their security posture and better react to an ever-changing threat landscape while supporting compliance and reporting needs,” says Jerry Mancini, Senior Director, Office of the Chief Technology Officer, NETSCOUT. “As organisations seek out new effective and efficient methods to comply with industry or government regulations, such as the EU’s Digital Operational Resilience Act (DORA), which goes into effect on 17th January 2025, they are learning that the network continues to play a strategic role for success. Omnis Cyber Intelligence’s continuous, scalable deep packet inspection-based network monitoring, tighter alignment with ATT&CK, expanded behavioural analytics, and new open architecture for ecosystem integration helps organizations meet these important compliance requirements and strengthen their digital resiliency.”