Resources for Federal Information Security Management Act (FISMA)

NetWitness NextGen analyzes attacks, risks, and verifies compliance

www.darkreading.com

A startup co-founded by the former cyber chief for the U.S. Department of Homeland Security today rolled out its first product -- a new, commercial version of a network forensics and monitoring tool that was first built for the intelligence community nearly 10 years ago.

NetWitness's new NetWitness NextGen tool captures all network traffic and uses that data to handle insider threat management, data leakage protection, malware activity detection, network performance management, and compliance verification and e-discovery, says Amit Yoran, chairman and CEO of Herndon, Va.-based NetWitness.

Yoran, who prior to his DHS job was co-founder and CEO of RipTech, and NetWitness president Nicholas Lantuh, a former vice president of NetWitness developer ManTech Security Technologies, led a management buyout of the tool in November of 2006. "This is not an internal control application. It's an audit/compliance/risk management tool," Yoran says.

The tool captures all data on the network and does session reconstruction and analysis up to the application layer, says Eddie Schwartz, CSO and vice president of marketing for NetWitness. "We can take an alert from an IDS or SIM and do an interactive deep-dive into the data," says Schwartz, the former CTO at ManTech Security Technologies. "We're providing the investigatory and forensics tools."

View the Resource

Share or bookmarklet this web page at: