News

Overview

Press Releases

2008

2007

2006

2005

Media Coverage

Events

Awards

Press Releases 2005

eIQnetworks Debuts Network Security Analyzer at RSA Conference 2005; Launches Powerful, Integrated Forensics and Investigative Analysis Engine

Award-Winning Security Event Management Solution Suite Includes XML based API, Forensics Analysis, Security Threat Tracking, Real Time Monitoring, Alerting and Reporting Applications

RSA Conference 2005 Presence: Booth #130 - Innovation Station, Booth #1442
Acton, Mass. – February 8, 2005 – eIQnetworks™, Inc. (www.eIQnetworks.com), a pioneer of comprehensive security and systems management solutions for the enterprise, announced today it will debut its award-winning Security Event Management (SEM) solution, Network Security Analyzer (NSA), at the industry’s largest gathering of information security vendors and influencers -- the RSA Conference 2005 in San Francisco from February 15 – 17, 2005 (booth #130 and Innovation Station #1442).

The Company will also unveil an extensive Forensics and Investigative Analysis Module – a seamlessly integrated investigative and tracking engine that enables customers to search hundreds of gigabytes of log data across enterprise-wide heterogeneous network devices. This security-critical capability, tightly integrated within eIQnetworks NSA’s log collection, compression, encryption, and archival features, enables users to conduct forensic and investigative analysis on past and present data to get to the root cause of any activity or intrusion.

This comprehensive, analytical and flexible forensics capability is essential for businesses and government agencies where network integrity and protection from outside threats is not only critical to daily business function, but also mandated by regulatory agencies enforcing increasingly stringent compliance regulations, such as Sarbanes-Oxley, HIPAA and GLBA. Additionally, for the first time in the industry, 3rd party applications can use NSA’s XML based APIs to securely access real time alert and report data.

“eIQnetworks was founded on the principle that no organization, either in the private sector or government, can afford to be flying blind through what has become a confusing tempest of security threats and attacks on the network infrastructure,” said Vijay Basani, chief executive officer of eIQnetworks. “While each individual device might be doing its intended job, there is no solution that can provide holistic view of perimeter security status. With NSA, we’re providing the archival, correlation, monitoring, alerting, reporting, and as of today, the forensic analysis tools to help security professionals and auditors clearly monitor and search through the voluminous log data, interpret and gain insight into hacker, virus or intrusion behavior, and ultimately prevent security breaches while complying with regulatory requirements.”

“Effective information security depends on the ability to provide a broad view of the entire network infrastructure, a perspective that’s not limited to threat assessment at the device level,” said Jon Oltsik, senior analyst, Information Security with Enterprise Security Group. “eIQnetworks is clearly embracing this strategic viewpoint by providing a holistic approach to ultimately mitigating infrastructure attacks that can yield crippling effects, not only to an organizations’ networked infrastructure, but to the very foundation of day-to-day business operations.”

Impact of NSA on Total Network Security
NSA helps security professionals respond rapidly to attacks and viruses, measure network and threat activity, identify blended attacks, minimize false positives and identify rule violations to tune defenses against known and unknown threats. NSA monitors and analyzes event data from multi-vendor network devices including routers, switches, firewalls, VPNs, IDS/IPS, antivirus systems and other devices from Cisco (NASDAQ: CSCO), Juniper (NASDAQ: JNPR), Check Point Software (NASDAQ: CHKP), Internet Security Systems (NASDAQ: ISS), Nortel (NYSE: NT), Fortinet, SonicWall (NASDAQ: SNWL), WatchGuard (NASDAQ: WGRD), SNORT, TopLayer, Astaro and more.

eIQnetworks’ NSA is the only vendor-neutral, real-time monitoring and event management solution that offers an agent less architecture, browser based access and heterogeneous security event management with reporting and monitoring portals. For Enterprise and MSSP customers, NSA provides a fast, easy and scalable perimeter security management solution that doesn’t require hundreds of thousands of dollars of investment. It includes these new features and benefits for:

Monitoring and Alerting

  • Real-time Monitoring – Monitors security event data across the entire network of devices in real-time, and identifies the most critical network events including viruses, intrusions, attacks, port activity, rule violations, denied/allowed traffic, protocol activity and more.

  • Monitoring Portal – Allows users to create multiple custom monitoring views to meet specific end user requirements. NSA offers multiple real-time views of the most critical security events and network traffic.

  • Advanced Correlated Alerting – Correlated alerts reduce false positives, identify blended attacks and/or viruses by correlating alerts across multiple devices, sources, destinations and ports. NSA minimizes incident response time and maximizes the ability to take proactive and preventative action to improve security event management. NSA delivers correlated alerts and event details in real-time on the screen, via e-mail or SNMP.

Forensic Analysis

  • Fast and Flexible Forensic Analysis – Provides an easy-to-use interface to allow users to search through hundreds of Gigabytes of log data at industry leading performance using regular expressions or any other parameters.

  • Post-incident Forensics and Investigative Analysis – NSA helps in post-incident forensics and investigative analysis by reconstructing the time line of an attack or activity by a particular user or employee. It assists Auditors in verifying an organizations’ regulatory compliance using ad-hoc search capability.

Reporting

  • Reporting Portal – For Enterprise users and MSSPs, Reporting portal gives access to near real-time correlated reports. The powerful drill-down feature displays 2nd and 3rd level details with a single click. NSA provides a flexible mechanism to meet unique end user security reporting requirements. Co-branded reporting portal allows MSSPs to provide an on-demand reporting service to their customers.

  • Comprehensive Report Categories – Provides over 800 pre-formatted reports in Intrusion, Protocol, Anti-Virus, SPAM, Content Categorization, Bandwidth Utilization, Intranet, Port and Rule based report categories.

  • Compliance Reporting – NSA provides automated reports to meet compliance with government regulations such as HIPAA, GLBA, and Sarbanes-Oxley.

Collection, Correlation and Archiving

  • Event Correlation – NSA correlates data across all network devices to provide a holistic view of intrusion and virus activity instead of looking at each device’s data separately.

  • Archiving and Automated Data Collection – NSA automatically detects, collects, encrypts and archives log data from all licensed network devices.

XML based API for 3rd party application Integration

  • NSA API (Application programming interface) – NSA’s flexible XML based API allows 3rd party applications to integrate with NSA to securely access real-time alert and report data for use in custom portal. NSA is the only SEM solution in the industry to enable enterprise users and MSSPs with this level of API integration.

Additionally, NSA includes international language support, multiple report formats and also provides for the automatic discovery of heterogeneous network devices. Browser-based consoles allow administrators to easily view event details in real-time from any system on the local network or remotely via a secure Internet connection.

Pricing & Availability
Available immediately for purchase over the Web and through distributors worldwide, Network Security Analyzer is priced at $795 per device. Site Licensing is also available. For a free trial or additional information, visit www.eIQnetworks.com.

About eIQnetworks
Founded in 2001, eIQnetworks is an award-winning provider of Security and Systems Management Solutions that deliver security-critical forensics, archiving, correlation, alerting, risk analysis, reporting as well as real-time event monitoring for information security professionals in multiple industries worldwide. The Company’s products are used in more than 50 countries around the world and are currently deployed in over 1000 companies and government agencies, including LL Bean, Hess, Sprint, Avaya, MCI, Malaysia Telecom, Fujitsu, Unisys, FiberLink, Boston.com, FCC, US Army, US Navy, Wachovia, Citibank, HP, ADP, Bertelsmann, UBS, KPMG and many more. eIQnetworks’ solutions are available worldwide through an extensive, global distributor network. For additional information, visit www.eIQnetworks.com.

eIQ Press Contact:
Mariah Torpey
Davies Murphy Group, Inc.
781-418-2404
eIQ@daviesmurphy.com

eIQnetworks and the eIQnetworks logo are registered trademarks and Network Security Analyzer is a trademark of eIQnetworks, Inc. All other trademarks, servicemarks, registered trademarks or registered servicemarks are the property of their respective owners.