Story image

Symantec, Ixia combine efforts to secure hybrid networks

14 May 2019

Symantec and Ixia are combining their efforts to better secure hybrid networks from issues such as visibility gaps and access to cloud networks at the packet level.

Ixia’s CloudLens and Symantec Security Analytics now feature complete integration, which allows Symantec customers to gain real-time visibility into their hybrid cloud environments.

According to the two companies, enterprise resources are migrating to cloud, but there is often a visibility gap for cloud assets. 

Ixia Solutions Group vice president of alliances Scott Westlake adds that enterprises need to secure their data, but that can be a challenge in complex hybrid networks.

The explosion of cloud services adoption and more cloud services have contributed to complexity and risk. They add that enterprise SOC teams need packet-level access to cloud access to make sure the hybrid network environment is secure.

“Today’s enterprises have assets in a mix of environments including on premises and in the public cloud. This hybrid environment can make security and threat remediation more complex,” explains Symantec product manager Bryan Cardoza. 

“This integration will provide joint customers with full packet-level access to cloud workload traffic for greater visibility in hybrid environments across the network and cloud. Security Analytics can then record and enrich all traffic to enable comprehensive incident response and forensics.”

An important component of Symantec’s Integrated Cyber Defense solutions, Symantec Security Analytics works with Ixia’s CloudLens and Vision ONE for seamless traffic visibility across hybrid networks. In physical networks, Ixia’s Vision One network packet broker aggregates, processes, and feeds traffic from multiple access points to Symantec Security Analytics appliances. 

In cloud environments, Ixia’s CloudLens visibility agents send traffic to Symantec’s Virtual Appliances deployed in public cloud environments. Traffic from physical and virtual appliances is then analysed and results delivered via an aggregated view within Security Analytics.

“As part of our Integrated Cyber Defense Platform strategy, Symantec is working closely with Ixia, a valued partner, to develop a visibility architecture that will add tremendous value for our customers,” adds Symantec vice president of business development, Peter Doggart.

“The integration between Ixia and Security Analytics provides SOC admins with visibility into cloud workload traffic to determine the source and scope of a sophisticated threat or attack when it extends to their cloud environment.”

The integrated solution provides:

•    Access to all packet data from physical and virtual networks and public clouds (fully-enriched metadata, and complete packet detail) for complete visibility and evidence reconstruction across hybrid networks
•    Long-term retention for retrospective analysis and correlated event creation to detect threats that emerge over time as well as an impact analysis
•    Continuous, automated threat detection and analysis in real-time enabling analysts to sift through large volumes of data quickly for proactive threat hunting
•    Community-scaled threat intelligence and analysis creating a feedback loop to eliminate noise
•    Rapid access to full packets for comprehensive forensic investigation and reduction of attacker dwell time
•    Automatic scaling in the cloud as cloud data assets change.

Slack users urged to update to prevent security vulnerability
Businesses that use popular messaging platform Slack are being urged to update their Slack for Windows to version 3.4.0 immediately.
Secureworks Magic Quadrant Leader for Security Services
This is the 11th time Secureworks has been positioned as a Leader in the Gartner Magic Quadrant for Managed Security Services, Worldwide.
Deakin Uni scores double win with Exabeam partnership
Australia’s Deakin University is partnering with SIEM security company Exabeam in an effort to boost the university’s cybersecurity degree program and strengthen its SIEM capabilities.
Google puts Huawei on the Android naughty list
Google has apparently suspended Huawei’s licence to use the full Android platform, according to media reports.
Voter vulnerabilities: Cybersecurity risks impact national elections
The outcome of elections have an enormous impact on the political and cultural landscape of any democratic society. 
Using data science to improve threat prevention
With a large amount of good quality data and strong algorithms, companies can develop highly effective protective measures.
General staff don’t get tech jargon - expert says time to ditch it
There's a serious gap between IT pros and general staff, and this expert says it's on the people in IT to bridge it.
ZombieLoad: Another batch of flaws affect Intel chips
“This flaw can be weaponised in highly targeted attacks that would normally require system-wide privileges or a complete subversion of the operating system."