Hewlett Packard Enterprise leads transformation of cyber defence
New reference architecture, offerings and partnerships enable enterprises to build security into the fabric of enterprise IT and stop attacks in their tracks
Hewlett Packard Enterprise (HPE) announced new security offerings designed to help organisations build protection into the fabric of their enterprises and stop attacks through comprehensive detection and response capabilities. Announcing a new cyber reference architecture, mobile security offerings and an expanded ecosystem of partners, HPE Security is helping organisations design security and risk management processes into IT operations to address today’s sophisticated threat landscape while providing a safer environment to meet tomorrow’s business demands.
With the emergence of Internet of Things (IoT) and the rapid acceleration of digital and converged systems, security professionals are challenged with identifying risks related to business critical assets without stifling innovation. According to IDC, the assessment of IoT devices along with the need to mitigate risks associated with IoT is prompting organisations to gain visibility into network traffic generated by these connected devices. IDC expects this to be a significant driver of growth in the security information and event management segment from $1.7 billion in 2014 to $2.6 billion in 2019, as organisations look to build security and analytics capabilities into the deployments of emerging technologies.1
Sue Barsamian, senior vice president and general manager, HPE Security Products, Hewlett Packard Enterprise said:
“The traditional bolt-on method of enterprise security, emphasising network defence and perimeter control, is proving to be insufficient against today’s radically changing threat landscape. Organisations need a risk and resiliency roadmap that goes beyond this traditional focus and builds security into every layer of the IT stack – from the infrastructure to the apps to the data – along with comprehensive detection and response capabilities that will drive the next generation of intelligence-driven security operations.”
Providing a Framework for Building in Cyber Resiliency
As enterprises are challenged with managing risk amidst a rapidly changing threat environment, HPE has introduced the HPE Cyber Reference Architecture (CRA), a comprehensive information security framework designed to help build resiliency into organisations in an effort to stop today’s most complex security threats. Comprising 12 domains, 63 sub-domains and over 350 distinct security capabilities, the HPE Cyber Reference Architecture defines solutions to today’s most complex cyber security challenges, including cloud, mobility, Machine-to-Machine (M2M) and Internet-of-Things (IoT).
Art Wong, senior vice president, HPE Security Services, Hewlett Packard Enterprise said:
“With the growth in emerging technologies and the sophistication of today’s threat landscape, enterprises today are challenged with identifying and managing risk while keeping pace with innovation. The HPE Cyber Reference Architecture provides organisations with a framework for resiliency, leveraging 350 distinct security architecture blueprints addressing the core components and initiatives needed to build security in and stop attacks in their tracks.”
Building Security into the Mobile Landscape
HPE unveiled results from a research study finding that more than half of mobile applications are collecting alarming quantities of data from users, but not all taking the necessary steps to protect this sensitive information. The study leveraged HPE Security Fortify on Demand to scan more than 36,000 iOS and Android mobile apps, and revealed the impact of increasing data collection, as well as recommendations for how organisations, mobile application developers and enterprises can transform security approaches to better protect their data.
To help organisations build security into their mobile applications, HPE also announced HPE SecureData Mobile, an end-to-end data encryption solution designed to protect sensitive information in mobile environments. This offering enables organisations to build data security into their mobile applications and safeguard the data throughout its full lifecycle – at rest, in motion, and in use – extending security far beyond traditional technologies such as TLS, VPN, and storage encryption. It also leverages HPE Format-Preserving Encryption, a standards-based encryption to make only minimal modifications to existing applications, while providing data security for mobile applications or mobile purchases.
Expanding the ArcSight Ecosystem for Enhanced Detection and Response
With 30 percent annual growth in its HPE Security ArcSight Technology Alliances Partner (TAP) program, HPE has announced a number of new ArcSight-powered offerings and strategic partnerships that promote collaboration among security leaders in the industry to support a comprehensive, “stop it now” model for maximum detection and response capabilities.
- HPE Security ArcSight & HPE Security Services: United Defence
HPE announced the continued evolution of its Threat Defence Services portfolio, which includes market-leading security monitoring and managed Security Information and Event Management (SIEM) services powered by HPE Security ArcSight. Enhancements to the services portfolio include automated security alerting services, security investigation and response, attacker profiling and user behavior and malware analytics solutions.
- HPE & Aruba ClearPass:Mobility Made Safe
HPE Security ArcSight now has deeper two-way integration with Aruba ClearPass. Building on the capability for HPE Security ArcSight to consume rich event, user and device context from ClearPass, HPE’s industry-leading network policy management solution, ArcSight now also allows the security analyst to quarantine or remove endpoints from a network via ClearPass when malicious behavior is detected.
- HPE Security ArcSight & vArmour: Securing the Enterprise Cloud
Virtualised and cloud data centers have long struggled with the tracking and analysis of application-layer activity. With vArmour DSS, users of HPE Security HPE Security ArcSight ESM now gain visibility into application communications from every workload across public and private clouds. In addition, organisations will be able to respond in real time to advanced persistent threats that are identified by HPE Security ArcSight ESM by making policy changes using vArmour’s application-aware micro-segmentation – stopping an attack.
- HPE Security ArcSight & Fortinet: Enhancing Device Visibility
The pairing of HPE Security Logger and Fortinet FortiGate will deliver an innovative, scalable security bundle from two leaders in security that goes beyond the firewall to provide in-depth visibility of all devices across an organisation. With this partnership, enterprises can capture, store and analyse security events for accelerated investigation and forensics, while supporting compliance needs.
- HPE Security ArcSight & IT-ISAC: Sharing Actionable Intelligence
HPE Threat Central, a community-sourced security intelligence platform that incorporates dynamic threat analysis scoring, was selected by the IT-ISAC as the primary threat sharing and analysis platform to share intelligence with its members. With its product agnostic approach and support for industry standards such and STIX and TAXII, HPE Threat Central provides derived, relevant and actionable intelligence through both machine-machine and human-human interfaces.
- HPE Security ArcSight & PwC: Enhancing Network Visibility
PwC’s Cyber Security & Privacy practice will now include the HPE DNS Malware Analytics (DMA) solution in its Security Assessment Services portfolio. This will provide enhanced network visibility to PwC’s client organisations allowing them to more easily detect and identify hosts infected with malware, bots or other unknown threats.
Additional information about HPE Security solutions and services is available at HPE booth No. 3411 at the RSA 2016 Conference. On Wednesday, March 2 at 2:40 p.m. PT., Executive Vice President and CTO at Hewlett Packard Enterprise, Martin Fink, will deliver a keynote revealing radically new approaches and data protection architectures designed to build security in across the entire IT stack and serve as the foundation of the next-generation Security Operation Center (SOC). To keep up with RSA Conference happenings and HPE news, follow hashtags #RSAC and @HPE_Security.