ReliaQuest, a cybersecurity provider, introduced enterprise cybersecurity platform GreyMatter to boost visibility and control over security operations by connecting an organizations disparate technologies, processes and teams.
Combining machine learning and human analysis to identify and address cybersecurity threats, ReliaQuest claims GreyMatter improves threat detection by four times in less than 90 days and reduces system downtime by 98%.
GreyMatter promises to eradicate fragmentation and difficult, expensive management that is an issue with many cybersecurity platforms, according to ReliaQuest. GreyMatter collects data from multiple points in an enterprise’s security system — such as security incident and event managers, endpoint detection and response providers, big data repositories and firewalls — to identify and respond to threats in real time.
ReliaQuest’s security platform incorporates new and traditional threat intelligence capabilities to see and act on cybersecurity threats:
- threat intelligence, using over 40 open source, Department of Homeland Security, Information Sharing and Analysis Center, and commercial feeds to ensure accurate threat detection while evaluating and prioritizing sources;
- threat detection, providing over 600 rules across the kill chain;
- investigation, analyzing all alerts with Cyber Analysis Methodology and streamlining data aggregation and visualization across multiple technologies;
- proactive hunts, taking action on specific incidents threatening business on a quarterly basis;
- automation of rapid response actions and data enrichment, quickly identifying and containing threats; and
- analytics, delivering real-time insights to evaluate overall health of security operations and identify areas of improvement.
According to Forrester, legacy security analytics are outperformed by security analytics platforms that incorporate machine learning and AI, in addition to traditional rule-based threat detection.
Key players in security analytics platforms include IBM’s QRadar, Splunk and LogRhythm, among others. What Forrester refers to as the next-generation security information management market — or SIM 2.0 — continues to grow; as of 2018, 57% of global enterprises said they implemented or upgraded security analytics platforms, with 22% planning to implement within the next 12 months.
GreyMatter intends to maintain visibility across and control over increasingly complex cybersecurity environments and deliver timely threat responses, according to ReliaQuest. GreyMatter is available now to enterprises.