April. 21, 2015 — Hewlett-Packard today introduced new security offerings to help organizations adopt a “New School of Cyber Defense” by protecting the interactions between users, applications, and volumes of data exchanged today. As information flows through data centers to the cloud and out to personal devices, HP says the data must be secured at every step. The new HP Security products and services announced today address this approach to security by incorporating user behavior analytics, data-centric cloud-access protection, mobile-application reputation analysis, contextual threat intelligence sharing, and incident response.
HP notes that, according to market-research firm Gartner, organizations worldwide spent approximately $77 billion on cyber security in 2014, while successful breaches increased 25 percent, the latter according to a 2014 Ponemon Institute Cost of Cyber Crime Study.
“The old school approach to cyber security focused on securing the perimeter, but the data-powering business today goes beyond our four walls and must be protected from cyber threats regardless of where it resides,” commented Art Gilliland, senior vice president and general manager for HP Security. “In today’s environment, we must challenge ourselves to embrace the new school of thinking that goes beyond the infrastructure to protect what matters most – the interactions between users, applications and data that when protected, can fuel our businesses and accelerate growth.”
Tackling Insider Threats through Behavioral Analytics
HP today announced a new offering that gives companies visibility into user behavior, which it says delivers a simple, efficient way to detect malicious users within the enterprise. Partnering with security-analytics company Securonix to deliver an inter-operable security-intelligence offering designed to help track and identify the “enemy within,” HP ArcSight User Behavior Analytics (UBA) leverages the behavioral data generated by enterprise users along with broader network event-intelligence to detect the most complex threats.
Extending Cloud Data-Centric Security
HP also announced a new cloud-access security platform designed to complement the existing HP Atalla cloud security portfolio, and expand its leadership in data-centric security. The new HP Cloud Access Security Protection platform provides “borderless” protection of the data itself – at rest, in use, or in motion – through a partnership with cloud-access security broker Adallom to bring enhanced cloud-security monitoring, governance, and control to HP customers. The platform integrates HP’s existing suite of data-security offerings including HP Atalla Information Protection and Control (IPC), a security solution that automatically encrypts files when moving information in and out of the cloud or across platforms.
Empowering BYOD through Mobile-Application Protection
HP also today announced a new offering to help its customers manage their Bring-Your-Own-Device (BYOD) policies more intelligently by providing a fully integrated mobile-application reputation database within the HP Fortify on Demand cloud-based portal. To further protect the interactions between users, data, and applications, all HP Fortify on Demand customers can now request free reputation and behavioral analysis of company-owned applications or those found in major app stores worldwide.
HP Threat Central
According to HP, perhaps one of the best weapons in a company’s security-defense arsenal is collaboration. Because information sharing is intrinsic to a comprehensive security strategy, HP Security has developed HP Threat Central, which is now generally available for all customers. Providing automated and open sharing of information, HP Threat Central offers contextual analysis of information, prioritization of security data, and identification of results that HP says will allow organizations to take action when threats occur. In addition to value-added intelligence, analysis of underground forums, and threat-actor profiling from HP Security Research, HP Security is also working to augment the HP Threat Central service with intelligence feeds from a network of companies, including AlienVault and Crowdstrike.
Advanced Threat Detection
The firm says its HP Security is focused on building a comprehensive set of best-in-class security offerings to deliver unparalleled global access to a comprehensive suite of security remediation services. As such, HP Security and FireEye today announced a partnership that HP says will provide incident-response offerings, and will also develop an industry-standard reference architecture providing customers with a blueprint for advanced threat protection services and incident-response capabilities.
HP’s other security solution include HP ArcSight, HP Atalla, HP Fortify, HP TippingPoint, and HP Security Voltage, and it’s also developed partnerships with industry-leaders such as Adallom, Securonix, and Trend Micro.
HP’s Gilliland’s will be presenting a keynote presentation on the main stage at the RSA Conference 2015 Conference being held Wednesday, April 22nd, at 3:05 p.m. PT. More information about HP Security solutions is available at HP booth No. 3403 at the conference.
HP’s annual enterprise security user conference, HP Protect, takes place September 1-4 in Washington, D.C.