Netscout upgrades Omnis Cyber Intelligence NDR​

​

Cybersecurity teams looking to investigate, hunt and respond to cyber threats more rapidly are set to get a boost as NETSCOUT SYSTEMS adds Adaptive Threat Analytics to its automated threat detection and response capabilities of Omnis Cyber Intelligence Network Detection and Response (NDR) solution.

With Adaptive Threat Analytics utilizing continuous network packet capture, local storage of metadata and packets independent of detections, built-in packet decodes, and a flexible ad hoc querying language, the enhanced version of Omnis Cyber Intelligence NDR provides SOC analysts with a threat investigation or hunting platform and enables more efficient incident response and reduces the risk of a successful cyberattack.

“Security teams often lack the specific knowledge to understand exactly what happened to be able to choose the best response,” explains Jerry Mancini, Senior Director, Office of the CTO, NETSCOUT.  “Omnis Cyber Intelligence with Adaptive Threat Analytics provides ‘big picture’ data before, during, and after an event that helps teams and organizations move from triage uncertainty and tuning to specific knowledge essential for reducing the mean time to resolution.”

Omnis Cyber Intelligence's AI-driven correlation stitches disparate events into cohesive, high-fidelity incidents, providing a holistic, actionable view of the entire attack chain.  It delivers superior scalability and cost-effective NDR capabilities across complex IT environments and easily integrates into your cybersecurity ecosystems, such as your SIEM, SOAR, or XDR.

“Network environments continue to become more disparate and complex,” adds John Grady, Principal Analyst, Cybersecurity, Enterprise Strategy Group.  “Bad actors exploit this broadened attack surface, making it difficult for security teams to respond quickly and accurately.  Due to this, continuous, unified, packet-based visibility into north-south and east-west traffic has become essential for effective and efficient threat detection and incident response.”

Organizations are still taking on average of 73 days to contain an incident, despite a decline in response time to cyber-related risks in recent years, according to McKinsey research.