Advanced Threat Protection
The Blue Coat Security Platform integrates sophisticated technologies, to deliver protection against the full spectrum of security threats. This Advanced Threat Protection capability safeguards your organisation from advanced persistent threats, detects sophisticated malware and automates the containment and resolution of incidents that have occurred. It does so as the network perimeter expands, as the migration to cloud infrastructure grows, as encrypted traffic becomes ubiquitous, and as the endpoint evolves at a revolutionary pace. Blue Coat makes it possible for day-to-day security operations and advanced security teams to work together to protect and empower the business.
Today’s threat landscape is populated by increasingly sophisticated intrusions that take the form of advanced persistent threats, targeted attacks, sophisticated malware and zero-day threats. Enterprises are experiencing material security breaches as a result of these attacks, because advanced security operations teams—as well as the defences they deploy—operate in silos with no ability to orchestrate security across the entire organisation or environment.
Blue Coat Advanced Threat Protection: Simplifying Sophisticated Security Challenges
Blue Coat Advanced Threat Protection provides an environment that enables your organisation to:
- Proactively prevent and detect against sophisticated threats
- Integrate advanced security technologies from across the industry
- Manage a unified security policy across the enterprise as well as the cloud
- Incorporate advanced incident response and forensic intelligence functions
Analyse and Stop Advanced Threats
Malware authors leverage a variety of techniques and technologies to exploit network environments and circumvent traditional security controls. Blue Coat Advanced Threat Protection provides integrated malware sandboxing and analysis, whitelisting, blacklisting and static code analysis, to ensure that these sophisticated behaviours and techniques can be identified and prevented. Furthermore, it delivers an integration architecture, to bring third-party security technologies into the mix too. Most importantly, as opposed to the countless security technologies in the industry that can only be implemented passively, these technologies can then be leveraged in-line for real-time inspection when attached to the Blue Coat Secure Web Gateway.
Employ Incident Response and Forensics Techniques
Blue Coat Advanced Threat Protection further takes advantage of Blue Coat Security Analytics (forensic network recording), delivering the industry’s most advanced incident response and network forensics technology to uncover post-breach activity. Forensic recordings are made of all traffic and are continually and automatically analysed by advanced security technologies, in an effort to uncover any threats that may have slipped through the net. This helps reduce the time it takes to detect, determine scope and ultimately respond to security incidents. When threats are discovered in the forensic recording, deep analysis is performed on any captured threats, then the security operations team is notified of the indicators and impact, and any newly found threat indicators are automatically fed back into the security environment.
Tutorial: Whiteboarding Advanced Threat Protection - Lifecycle Defense
Take a step-by-step tour of how Blue Coat protects against and analyzes advanced persistent threats -- from safeguarding ongoing operations, to incident containment, to incident resolution.