Traditional Security Solutions Have Reached Their Limit

Transcription

1

2 Traditional Security Solutions Have Reached Their Limit CHALLENGE #1 They are reactive They force you to deal only with symptoms, rather than root causes. CHALLENGE #2 256 DAYS TO IDENTIFY A BREACH TRADITIONAL Endpoint Security Born in another era No protection from advanced threats Not: mobile, virtual, distributed or fast-paced OTHER ALTERNATIVES FALL SHORT OF TODAY S NEEDS ALTERNATIVE NEW Endpoint Security Flying blind: no understanding of root cause Too reactive, only manage symptoms Go-it-alone mentality They Leave You Flying Blind A NEW APPROACH IS NEEDED Creating too much noise and too many unanswered questions: What s happening on my endpoints? What s the root cause of this incident? Which alerts are positive? DAYS TO REMEDIATE A BREACH NEXT-GENERATION ENDPOINT SECURITY CHALLENGE #3 They Make You Go It Alone You have no way of leverage the wisdom of other like-minded companies. Carbon Black: A New Era of Endpoint Security Carbon Black leads a new era of endpoint security by enabling organizations to disrupt advanced attacks, deploy the best prevention strategies for their business, and leverage the expertise of 10,000 professionals from IR firms, MSSPs and enterprises to shift the balance of power back to security teams. Are other companies experiencing this attack? How are experts dealing with this issue? Has anyone else had this problem before? $3.8 MILLION AVERAGE COST PER BREACH Watch every move Record every step. Cut out the noise Relentlessly watch for known, unknown behavior. Create a system of record. Implement the right form of prevention Match the right approach to fit your business needs, endpoints, users and systems. Companies relying on traditional security solutions are losing the cyber war, which is now being fought on Unravel the entire attack Quickly understand the root cause. Garner insight into attacker behavior. Isolate and disrupt attacks. Automate and integrate Automate everything. Integrate your entire security stack. Reduce the errors. Change the economics. is the target is vunerable is the new perimeter Disrupt adversaries behavior Make them change behavior. Make it harder for them to succeed. Counter their every move. Hit back with a united front Leverage collective intelligence of thousands of users. Share knowledge and patterns of attack behavior across the community.

3 Why Forward-Thinking Organizations Are Choosing Carbon Black EVERY SECOND COUNTS DISRUPT ATTACKER BEHAVIOR Every Second Counts: Continuously Choose the Right Prevention: Multiple record, centralize and retain activity from every endpoint. options to fit your business. Record: Continuous, always on, never sleeps because you can t know what s bad ahead of time. Multiple layers of endpoint defense: Stop attacks with a variety of endpoint prevention options. Collect: Gather the right data to identify attacks, based on our offensive security expertise. Dial prevention up or down: Flexible endpoint policies under your control. Centralize: Stream all data to an aggregated system-ofrecord. Manage this single source of truth as a key IT asset. Proper balance: Implement the best choices to fit your culture and the different needs of users, lines of business and endpoints. One size does not fit all. Retain: Persistent history of attacker s every action, root cause, patterns of behavior. CHOOSE THE RIGHT PREVENTION Disrupt Attacker Behavior: Hit them where Never Go it Alone: United people, it counts: root cause and behavior patterns. knowledge and systems. Root cause: Move beyond signatures/hashes. Determine the root cause of an attack. Address the real attack vector, not symptoms. United systems: Open APIs and dozens of technology partnerships to integrate with your existing security stack. Get the best of two worlds: best-of-breed and integrated security. Patterns of attack: Understand patterns of attack behavior. Systematically shut down tactics, techniques and procedures. Eliminate repeat attacks. Customized: Tailor detection rules to fit your unique threat and risk profile. Never let attackers hide. NEVER GO IT ALONE Make it work for you: Defend the integrity of your business without slowing it down. Adapt the security to your business, not the business to your security. Remediate: Diagnose, contain, disrupt and remediate attacks from anywhere with live remote control. United knowledge: Consume behavior patterns of attack, threat intelligence, code, etc., from experts. You choose if you want to share your data with the community. United experts: Combat attackers by leveraging the collective expertise of 10,000 experts from leading IR firms, MSSPs and enterprises.

4 Carbon Black: Next Generation Endpoint Security Deployment Options 10,000 Practitioners 70+ IR and MSSP Partners Customers Policies & Rules Patterns of Compromise Connectors & Code United Experts and Knowledge Multiple Prevention Strategies Cb Enterprise Protection Windows, Mac, Linux Cb Threat Intel Kill Chain Visualization Attack Remediation Cb Enterprise Response IT and Security Ops Team Reputation, Indicators, Classification SOC IR & Threat Hunting Teams On-Premises: Everything is on your site. Gives you full control, security and speed. Cloud: Put whatever you want in the cloud. If you have cloud-based servers, you SaaS: Put the front-end endpoint sensors on your machines, and use our SaaS back- MSSP: Put the front-end endpoint sensors on your machines and let an MSSP manage Compliance and Reporting System-of-Record Continuous Recording Root Cause Analysis can put our sensors on them. You can also put our end offering. We do all the work and maintenance. everything else. We have more MSSPs using Open API, Automation, and Orchestration Big Data back-end on your own AWS instance. You get security and convenience while we our solution than other NGES offering. This gives United Systems manage the operational back end. you high security with minimum effort. Network Security SIEM and Analytics Threat Intelligence Custom/Services Carbon Black Portfolio Carbon Black Enterprise Protection Carbon Black Enterprise Protection is the first endpoint threat prevention solution to deliver a portfolio of threat management controls, real-time visibility across systems, and comprehensive compliance rule sets in a single platform. Only Cb Enterprise Protection enables IT, compliance, infrastructure and security teams to deploy, automate and customize protection policies based on users, geography and systems all from a centralized management console. Carbon Black Enterprise Response Carbon Black Enterprise Response is the most complete endpoint detection and response solution for security teams who want a single platform for hunting threats, disrupting adversary behavior and changing the economics of security operations. Only Cb Enterprise Response continuously records all endpoint activity, centralizes and correlates that data with unified intelligence sources, and reveals a complete kill chain that pinpoints attack root cause to power live threat containment, banning and remediation activities. Built entirely on open APIs, Cb Enterprise Response pushes and pulls data through the security infrastructure to automate and enhance adaptive threat response processes, helping to make it the #1 EDR solution among global enterprises and 70+ of the world s leading IR firms and MSSPs. Carbon Black Threat Intel Carbon Black Threat Intel bridges the gap between information and action. It provides real-time threat detection and analysis services that enable you to proactively detect, respond to and ban attacks before a breach occurs. Powered by real-time data from millions of endpoints and a global network of intelligence partnerships, Cb Threat Intel is the world s leading source for detection, reputation and attack classification services. Carbon Black Enterprise Response has reduced our average incident response lifecycle from 8 hours to 15 minutes. Leading Systems Integrator We deployed Carbon Black Enterprise Protection as a high-enforcement application control solution on 2,000 point-of-sales terminals and realized an immediate $2.2 million in cost avoidance by eliminating our Microsoft extended support for end-of-life systems and McAfee antivirus contracts. Leading U.S. retailer

5 Carbon Black: The Leader in Next- Generation Endpoint Security #1 Endpoint Protection The SANS Institute s Best of Awards, based on votes by security practitioners, labeled Carbon Black No. 1 in endpoint protection. More than 650 security operations professionals and security managers from within the SANS community voted. #1 Market Share Leading analyst firm IDC reported that Carbon Black has 37 percent market share in category, based on revenue. The company s revenue is nearly three times that of its nearest competitor, according to IDC. #1 Choice of IR Professionals According to a SANS survey of IR professionals, which asked: What vendor products are you currently using and evaluating for your incident response efforts, including forensics? Carbon Black was the clear top choice, with 68 percent of respondents choosing Carbon Black Enterprise Response. Who Trusts Us 2,000 Organizations 10,000 Practitioners 25 of Fortune 100 7M+ Licenses 70+ IR/MSSPs Use Cases PPApplication Control PPBreach Mitigation PPData Center Security PPEndpoint Security PPIncident Response PPThreat Detection PPThreat Hunting PPSecurity Automation PPRegulatory Compliance 1100 Winter Street Waltham, MA USA P F Carbon Black leads a new era of endpoint security by enabling organizations to disrupt advanced attacks, deploy the best prevention strategies for their business, and leverage the expertise of 10,000 professionals from IR firms, MSSPs and enterprises to shift the balance of power back to security teams. Only Carbon Black continuously records and centrally retains all endpoint activity, making it easy to track an attacker s every action, instantly scope every incident, unravel entire attacks and determine root causes. Carbon Black also offers a range of prevention options so organizations can match their endpoint defense to their business needs. Carbon Black has been named #1 in endpoint protection, incident response, and market share. Forward-thinking companies choose Carbon Black to arm their endpoints, enabling security teams to: Disrupt. Defend. Unite Carbon Black is a registered trademark of Carbon Black, Inc. All other company or product names may be the trademarks of their respective owners JPS