At HP Protect, the company’s annual enterprise security user conference, HP introduced new offerings designed to arm organisations with the actionable security intelligence needed to engage a more proactive defence against the adversary.
In Australia, the average cost of cybercrime has increased by 45 percent in the last year,(1) putting the industry on the defensive against adversaries that attack with unmatched speed, innovation and collaboration. To keep pace with these growing threats, security professionals need to gather intelligence, determine its relevance and then use it to build a proactive defence that can anticipate, neutralise or mitigate an attack.
HP is introducing new solutions that anticipate attacks, expand visibility and enable automated, real-time response. By gathering threat intelligence and coordinating response across integrated solutions and teams, organisations can proactively defend against attacks at every point in the threat life cycle.
“Adversaries are capitalising on fragmented security strategies, siloed teams and standalone point products to aggressively attack and gain entry through every door left open across an organisation,” said Shane Bellos, general manager, Enterprise Security Products, HP South Pacific. “We need intelligence and automation that empowers security professionals to take action against the adversary—and gets the right intelligence to the right people at the right time.”
Stopping breaches in real time with first application self-protection service
With more than 80 percent of today’s successful security breaches occurring through the application layer,(2) production applications require real-time protection and remediation from the inside out. Traditional methods of responding to new and existing threats—such as changing code or implementing perimeter defence—are important, but can take weeks or months to fully deploy. To minimise the risk at the application layer, HP is introducing HP Application Defender, the first cloud-based security service that enables self-protection for applications in production by virtually patching software vulnerabilities.
HP Application Defender uses Runtime Application Self-Protection (RASP) technology to help IT security professionals identify and stop attacks by monitoring application activity in the runtime environment. This helps protect against common software application vulnerabilities, including SQL injection, cross-site scripting and unauthorised access.
Neutralising “Patient Zero” to stop advanced targeted attacks
To block threats in real time, the new HP TippingPoint Advanced Threat Appliance (ATA) product family brings together a comprehensive set of network-enforcement capabilities to detect, act upon and mitigate advanced network security threats, utilising static, dynamic and behavioural detection techniques. Employing a rich set of automated blocking techniques combined with advanced threat detection and analysis, the new HP solution set provides organisations with enhanced defence against initial “patient zero” infection and subsequent lateral spread.
The industry-leading HP Tipping Point Next-Generation Intrusion Prevention System (NGIPS) with the HP TippingPoint Next-Generation Firewall (NGFW) and HP TippingPoint Security Management System (SMS) allow organisations to quickly block threats from further infiltration and lateral spread across the network. They then use the security intelligence gained to block future attacks. The new HP TippingPoint ATA family of products will combine these advanced threat capabilities with the filter-writing expertise of HP TippingPoint Digital Vaccine (DV) Labs to further strengthen protection.
Activating intelligence at scale
To address the challenge of parsing through an increasing amount of data to deliver actionable security intelligence, HP is introducing HP ArcSight Logger 6.0, the latest release of its universal log management solution that unifies collection, storage and analysis of machine data to consolidate security and compliance. A core part of the leading HP ArcSight Security Information and Event Management (SIEM) portfolio, HP ArcSight Logger 6.0 offers enhanced scalability to handle eight times more data at 10 times higher performance than the previous version(3) to deliver continuous monitoring and high-speed contextual forensic investigation capabilities.
Additional information about HP Enterprise Security Products can be found at www.hp.com/go/esp.
HP’s annual enterprise security user conference, HP Protect, is taking place this week from Sept. 8-11 in Washington, D.C. Follow HP Security on Twitter @HPsecurity, and keep up with event happenings by following the event hashtag, #HPProtect.
HP creates new possibilities for technology to have a meaningful impact on people, businesses, governments and society. With the broadest technology portfolio spanning printing, personal systems, software, services and IT infrastructure, HP delivers solutions for customers’ most complex challenges in every region of the world. More information about HP is available at http://www.hp.com.au/.