News

Overview

Press Releases

2008

2007

2006

2005

Media Coverage

Events

Awards

Press Releases 2005

eIQnetworks Unveils Enterprise Security Analyzer; A Comprehensive SIEM Solution Ideal for Global, Disparate Enterprises and Managed Security Service Providers

Industry-First Topology Based Threat Visualization, Advanced Correlation Analysis, Security Monitoring and Reporting Provides Essential ‘Security Intelligence Layer’ Spanning Global Networks

Acton, Mass. – September 27, 2005 – eIQnetworks™, Inc. (www.eIQnetworks.com), a global provider of comprehensive Security Information and Event Management (SIEM) solutions for the enterprise, today announced it is setting its sights on exceeding the security information and compliance management demands of large, global enterprises, service providers and managed security service providers (MSSPs) with the debut of Enterprise Security Analyzer (ESA). With ESA, eIQnetworks is introducing a newly-developed, patent pending Threat Visualization technology, a distributed scalable architecture designed to seamlessly scale ESA to support thousands of network devices and hosts, and significantly enhanced compliance management benefits. ESA is ideally-suited for the increasingly complex and challenging security and compliance requirements of globally dispersed large enterprise infrastructures, service providers and MSSPs.

Incorporating patent pending, agentless technology, ESA is the first SIEM solution on the market to deliver Threat Visualization, centralized log management, continuous and real-time monitoring, correlated alerting, reporting and forensics analysis, all in a single solution. ESA collects, archives and correlates event and system data from a variety of heterogeneous, multi-vendor network devices and Windows, Linux and UNIX servers and work stations. This capability enables large enterprise and MSSPs customers to bolster security operations and deliver all necessary security operations management tools to meet stringent federal regulatory requirements, such as SOX, GLBA, HIPAA, and FISMA compliance.

“CEOs and CSOs still reeling from the brazen and extremely damaging security breaches over the past year are beginning to embrace more strategic, preemptive approaches to protecting enterprise assets with cost-effective SIEM solutions,” said Jon Oltsik, senior analyst, Enterprise Strategy Group. “eIQnetworks has addressed these issues head-on with Enterprise Security Analyzer. With this launch, eIQ is demonstrating its grasp on the complex and comprehensive requirements of effective security and compliance management and a profound understanding of the real-world needs, pain points and security requirements of C-level managers across all industries.”

Ideal for large enterprises, ESA enables Managed Security Service Providers (MSSPs) to easily integrate ESA into existing security operations and introduce new and value added revenue generating subscription based services, such as centralized log management, real time security event monitoring and alerting, reporting and on-demand forensics. MSSPs can easily deliver these services to their end user customers, either by integrating ESA into existing portals using built-in APIs or by leveraging out-of-the-box monitoring and reporting portals and single sign-on features

"VanguardMS's customers must stay connected to their customers, suppliers and partners. As a trusted partner, our clients rely on us to protect them against the increasingly malicious threat environment inherent within their connected communities,” said Doug Mow, vice president of marketing and corporate development, Vanguard Managed Solutions. “eIQnetworks provides us the technology which enables us to keep pace with the rapid rate of change in today's world. Enterprise Security Analyzer will be a critical component of our sophisticated toolset. The advanced distributed architecture will provide us with the ability to quickly scale SIEM services across our clients' globally dispersed networks. And, the new security topology-based threat visualization capabilities will enable us to assess threat activity around the world regardless of networked device. We’ll be able to pinpoint precise locations in real-time."

“With Enterprise Security Analyzer, we’re enabling our customers to build a security intelligence layer that spans their globally disparate enterprise IT infrastructure,” said Vijay Basani, chief executive officer of eIQnetworks. “By combining innovative topology-based Threat Visualization with security information and event management as well as asset management, ESA delivers essential a real-time grasp of an organizations’ security posture. This unique approach empowers our customers with a pre-emptive, proactive security strategy that encompasses their global network.”

Enterprise Security Analyzer: Delivering a ‘Security Intelligence Layer’
Today’s enterprise infrastructures and outsourced security services providers and MSSPs demand a Security Information/Event Management solution with the ability to seamlessly scale to large networked environments. ESA is built on a distributed enterprise class architecture that effectively scales to thousands of networked devices and hosts, and supports both a stand-alone deployment for smaller networks and a distributed deployment for large enterprise installations.

ESA’s architecture delivers the following benefits:

  • Agentless implementation

  • Distributed and highly scalable deployment

  • Heterogeneous device and vendor support

  • Anytime, anywhere Web-based management

  • Role-based access and Active Directory/LDAP single sign on integration

  • Flexible for easy integration by MSSPs and OEMs

  • XML based API

ESA also introduces a portfolio of advanced security intelligence capabilities, including:

  • Security Topology and threat visualization– This comprehensive security topology provides the ability to immediately gain insight into overall IT security posture by graphically mapping security events;

  • Heterogeneous Monitoring- Monitors security event data across the entire network of security devices and hosts in real-time;

  • Real-time Correlated Alerting- Template-driven alert correlation allows creation and definition of any number of rules and alerts to reduce false positives, identify blended attacks and security breaches;

  • Real-time Event Manage – View security events data from hundreds of heterogeneous and multi-vendor network devices and prioritize the actions based on business impact of each event, allowing for corrective action before it becomes a system wide problem;

  • Monitoring and Reporting Portals- Allows distributed enterprise and MSSP customers to use out-of-the-box monitoring and reporting portals to give access to regional administrators and end customers based on their role or SLA. ESA comes with over 30 built-in monitors and over 800 reports to meet a wide variety of requirements;

  • Vulnerability Reporting- By integrating vulnerability scanner data, MSSPs can deliver periodic vulnerability reports to their customers;

  • Forensics and Investigative Analysis – Identifies anomalies and employee corporate policy violations. Allows expression and/or filter based search to vector an attack and understand intrusion path.

eIQnetworks has also set the industry standard for Compliance Audit Lifecycle Management and has integrated enhanced compliance management capabilities, ideally suited for large enterprise infrastructures, into ESA. These capabilities include:

  • Automated Log Archiving for Compliance– ESA automatically compresses, encrypts and archives log files for investigative analysis and regulatory compliance; now customers can save log data in unaltered format for up to 9 years based on the industry and regulatory requirements.

  • Continuous Compliance Monitoring- Centralized monitoring and alert correlation enable real-time investigation of security incidents with regulatory compliance implications;

  • Compliance Reports- Provide detailed reports specific to Sarbanes-Oxley (SOX), HIPAA, GLBA and FISMA;

  • Scalable Search – An easy-to-use mechanism to search hundreds of gigabytes of raw log data across multiple devices and hosts based on user configurable search criteria to aid in investigative and audit analysis.

Pricing and Availability
eIQnetworks’ Enterprise Security Analyzer will be generally available this fall. List pricing for ESA is $7,995, which includes license for 5 devices and 5 hosts (Windows, Linux or UNIX). Additional SOHO devices are priced at $495 per device, and additional non-SOHO devices are priced at $895 per device, and each additional host priced at $150 per host.

About eIQnetworks
Founded in 2001, eIQnetworks is an award-winning provider of Security Information and Event Management (SIEM) solutions. eIQnetworks delivers the industry’s most comprehensive and cost-effective solutions for security professionals who require real-time security intelligence for identifying, understanding and pre-empting hacker and virus behavior and security threats, all while meeting stringent federal compliance requirements. The Company’s products are used in more than 50 countries around the world and are currently deployed in over 1000 companies and government agencies, including LL Bean, Hess, Sprint, Avaya, MCI, Malaysia Telecom, Fujitsu, Unisys, Fiberlink, Boston.com, FCC, US Army, US Navy, Wachovia, Citibank, HP, ADP, Bertelsmann, UBS, KPMG and many more. eIQnetworks’ solutions are available worldwide through an extensive, global distributor network. For additional information, visit: www.eIQnetworks.com or call 1-877-LOGS R US.

eIQ Press Contact:
Mariah Torpey
Davies Murphy Group, Inc.
781-418-2404
eIQ@daviesmurphy.com

eIQnetworks and the eIQnetworks logo are registered trademarks and Enterprise Security Analyzer is a trademark of eIQnetworks, Inc. All other trademarks, servicemarks, registered trademarks or registered servicemarks are the property of their respective owners.