Dynamic Security Intelligence™ (DSI)

What is Dynamic Security Intelligence (DSI)?

view a demo of nitroview ESMDSI is a new approach to network and security information management that solves the immense problems of collection, analysis and reporting on growing volumes of data; providing organizations with the ability to consolidate Security Event Management (SEM), Network Behavior Analysis (NBA) and Log Management functionality into a single, cost effective, appliance-based solution.

DSI focuses on four areas:

  • Integrating network, security and log management systems into a single, cooperative system;
  • Providing both situational and historical context to the information that is collected;
  • Providing a means to visualize the dynamic relationships between relevant data sets;
  • Presenting the relevant information and reports through a fully interactive interface that enables information to be managed heuristically.

Why is DSI Needed?

A major security problem facing enterprises today is how to collect, store, process, analyze and report on the massive amount of information generated by the numerous network and security devices, including firewalls, servers, routers and intrusion detection and intrusion prevention systems and others.

Today - multiple solutions are typically used to solve this network and security information overload problem, leading to a more costly and less effective and efficient solution.

And, it is only going to get worse:

  • Increased amounts of data required to be analyzed and stored. The amount of data being produced in an enterprise network has expanded exponentially, and enterprises need a more scalable and cost effective system to manage and interpret this data.
  • Increased regulatory requirements. Information privacy and security is now regulated by such directives as the Payment Card Industry (PCI) Data Security Standard, the Sarbanes-Oxley Act of 2002 (SOX), the Gramm-Leach-Bliley Act (GLBA), the Federal Information Security Management Act of 2002 (FISMA) and the Health Insurance Portability and Accountability Act of 1996 (HIPAA). To satisfy these new regulations, companies are required to deploy systems, policies and programs that enforce information security, control and monitoring and reporting capabilities for corporate assets. These regulatory directives are often burdensome and expensive for many companies, as companies are now forced to demonstrate compliance with security requirements set by both regulatory bodies and internal mandates. For many organizations, compliance has become a top security concern.
  • Increased need for network security by organizations of all sizes. Due to increased compliance requirements and more prevalent attacks, network monitoring, analysis and protection has become more of a priority for organizations that have smaller, if any, security staffs and more limited system support capabilities. For these buyers, predefined function and ease of deployment and support is valued over advanced function and extensive customization.

How Do We Do Accomplish DSI in NitroView ESM?

NitroView ESM is able to deliver on DSI by utilizing new features in our patented relational data management engine. Advancements in how large amounts of data are indexed, stored, processed, and analyzed are the enablers behind DSI: without this advanced data processing technology, it would take significantly longer to perform the back-end processes required to integrate, correlate, and analyze diverse data — making a responsive, interactive interface like NitroView an impossibility. With these advancements in place, however, NitroSecurity is able to perform hours of processing in seconds, enabling NitroView to perform responsively.