Security Analytics Platform

Security Analytics Platform

See All. Know More. Respond Faster. Today's sophisticated malware and zero-day attacks take only seconds or minutes to compromise a target, but can take weeks, months or longer to discover and resolve. Like a security camera, the Blue Coat Security Analytics Platform and Global Intelligence Network reduce corporate risk by delivering full network security visibility, advanced network forensics, and real-time threat detection for all network activity. This enables enterprises to identify and detect advanced malware crossing the network and contain zero-day and advanced targeted attacks. A comprehensive record of all network activity lets you conduct swift forensic investigations, perform proactive incident response and resolve breaches in a fraction of the time.

The Security Analytics Platform is easily deployed anywhere within your network—either as a pre-configured appliance, a virtual appliance, or software on your own hardware. The platform delivers high-performance analytics via 2-10 Gbps lossless packet capture and indexing rates; massive scalability and add-on capacity; and centralized management, so you have full 360 degree visibility into thousands of network segments from a single pane of glass. Your existing security tools gain the much-needed context and content needed to empower your team to identify and address security issues quickly and thoroughly. Read the Jefferies Use Case.

An integral part Blue Coat's industry-leading security architecture, the Security Analytics Platform helps you protect your workforce and business-critical systems and constantly fortify your security processes.

Proactive Incident Response and Advanced Forensics

Quickly identify, analyze, contain and resolve cyber attacks and breaches. Enable your security and incident response teams to easily understand attacker's methods and activities and quickly uncover the full source and scope of attacks and security events so they can swiftly resolve incidents and mitigate further risk. The Security Analytics Platform:

  • Captures, indexes, classifies and enriches all network traffic data with the latest threat intelligence only made available through the Blue Coat Global Intelligence Network, a community of over 15,000 customers and 75 million users constantly sharing threat data.

  • Provides detailed forensic information and real-time alerts on newly identified malicious Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs)

  • Reduces time-to-resolution and answers the what?, when? and how? of any security incident through root cause exploration, deep packet inspection, integrated reputation services and data enrichment, and advanced context-based reporting on malicious activity

  • Delivers full security visibility across thousands of applications, dozens of file-transports, all flows and all packets—including encrypted traffic—through tight integration with the Blue Coat SSL Visibility Appliance

  • Automatically detects, extracts, classifies and brokers suspicious or unknown files in real-time to the Blue Coat Malware Analysis Appliance or 3rd party systems for malware detonation and scoring

  • Improves the effectiveness of existing security technologies by integrating with leading NGFW, IPS, SIEM, and sandboxing solutions to gain actionable intelligence with detailed forensic evidence of exactly what happened before, during and after a security incident

  • Integrates directly with leading Endpoint Detection and Response (EDR) solutions for a full network to endpoint view of any malicious activity, delivering prompt and precise attack resolution

Share this: 

Demo: Delivering Real-time Threat Analysis with Blue Coat ThreatBLADES

Blue Coat ThreatBLADES on the Security Analytics Platform leverage the massive collection of threat data within the Blue Coat Global Intelligence Network. This enables automated real-time detection and protection against all known web-, email-, and file-based threats.