Stevie Awards

Search past winners/finalists

Learn about the other Stevie Awards Competitions
  1. Home
  2. RSA NetWitness Live
Arrow

  • MESA logo

RSA NetWitness Live

Gold Stevie Award Winner 2012, Click to Enter The 2013 American Business Awards

Company: RSA, Bedford, Massachusetts
Entry Submitted By: CHEN PR, Inc.
Company Description: RSA, The Security Division of EMC, is a provider of security, risk and compliance management solutions for business acceleration. RSA helps the world’s leading organizations solve their most complex and sensitive security challenges. These challenges include managing organizational risk, safeguarding mobile access and collaboration, proving compliance, and securing virtual and cloud envi
Nomination Category: Products & Product Management Categories
Nomination Sub Category: New Product or Service of the Year - Software - Security Solution

Nomination Title: RSA NetWitness Live

Tell the story about this nominated product or service (up to 500 words). Describe its function, features, benefits, and performance to date.

RSA NetWitness Live is a cloud-based, 24x7 threat intelligence delivery system that aggregates, analyzes and spotlights the most relevant security content from trusted sources within the worldwide security community, and then coalesces and correlates it with an organization’s network and log data in real-time. This fusion provides an unparalleled level of actionable insights to security operations centers (SOC) that can help speed incident response times and minimize exposure to targeted cyberattacks.

Attack methodologies and exploit frameworks continue to evolve at unprecedented rates. Despite the increase of advanced threat intelligence available to security professionals, this information can be overwhelming, and lack prioritization or a means of direct operational implementation. Further, proactive threat management requires parsers and queries that consider zero-day attack vectors – but many security teams lack the time and/or the training to create this custom content.

Architected to address these challenges – and unlike other services which focus on single source intelligence – RSA NetWitness Live empowers security professionals to tailor the content sources received, and employ multi-source intelligence according to their unique environment and threat profile.
RSA NetWitness Live also benefits from the ability to match that intelligence with the total visibility and context-based understanding afforded by the RSA NetWitness security monitoring platform (and its suite of analytic tools and applications), and share the resulting knowledge across RSA’s security management and compliance solution set.

In February 2012 at the RSA Conference, RSA introduced three major enhancements to RSA NetWitness Live that allow security analysts to reduce the time and effort typically required to effectively manage content, and focus more on the task of protecting their network assets:

• RSA NetWitness Live Manager 2.1 with Content Profiles – A central management console that helps organizations tailor the specific content, feeds, parsers and rules according to their needs; add their own network monitoring feeds; and optimize content flow.

• Expanded Threat Content – Offering 1,000 pieces of content (reports, rules, parsers, etc.) from more than 100 distinct threat information sources, and tracking more than 5 million IP addresses and domains, RSA NetWitness Live now integrates:

o Data sources including: RSA CyberCrime Intelligence Service and RSA FraudAction Service, which collectively aggregate fraud intelligence from 500 million networked devices and 250 million users worldwide.

o Threat indicator feeds including: VeriSign iDefense Security Intelligence Services and Critical Intelligence Services.

o Intelligence feeds including: Bit9 and ThreatGRID for malware analysis.

• Tighter Integration with RSA NetWitness Security Analytics – SOC teams can stream relevant RSA NetWitness Live content directly to RSA NetWitness for Logs and RSA NetWitness Spectrum – a 2011 Stevie Award Winner – which automatically consume this data to generate more comprehensive and precise analysis and threat detection results.

Additionally, RSA recently demonstrated a cloud-based framework and proof-of-concept to help the global security industry test new ideas and methods for improving threat information sharing and collaboration. Notably, this conceptual framework is built upon RSA NetWitness Live (as well the RSA Archer eGRC Suite), and facilitates collaboration among organizations and outside security experts in detecting, investigating and remediating advanced threats.Upload a collection of supporting files and web addresses to our server to provide more background information to the judges. You may upload any number of attachments and URLs through the "Add Attachments, Videos, or Links to This Entry" link above. (Do NOT list your URLs below.)

 

Provide a brief (up to 100 words) biography about the leader(s) of the team that developed this nominated product or service:

Brian Girardi is the Senior Director of Product Management at RSA. He has extensive industry experience and a deep knowledge of NetWitness’s technology, having been involved with the company since its beginnings in 2002. As an Executive Director at ManTech, he was responsible for the daily operations of the NetWitness product group. When NetWitness became its own company in 2006, Brian remained, serving as Vice President of Product Management. After NetWitness’s acquisition by RSA in April 2011, Brian became Senior Director of Product Management, leading development of the innovative RSA NetWitness platform and suite of applications, including RSA NetWitness Live.