McAfee is re-spinning NitroView into its new Enterprise Security Manager, touted to be the "first" Security Information and Event Management (SIEM) platform that is both risk-aware and situational.
This SIEM, in particular, is really trying to tackle big data about security using a scalable database, collecting and processing billions of relational data points both in real-time and historically each day.
Thus, the McAfee Enterprise Security Manager will offer real-time updates about events, users, systems, data, risks, and countermeasures for accurate situational awareness. The manager will then take those results and try to connect them with threat, countermeasure and user identity information.
The goal is to reduce response times while maintaining a proactive approach through automated (but intelligent) prioritized security alerts.
McAfee is really tying several of its solutions together with this SIEM. Based on the McAfee Security Connected framework, McAfee has also integrated a connection to its ePolicy Orchestrator for extended visibility across a network, and channels to the Global Threat Intelligence platform from McAfee Labs to sync real-world updates about security events to pinpoint and shut down attacks as quickly as possible.
The latest release of McAfee Enterprise Security Manager is expected be available by the end of the second quarter.
- McAfee: Most businesses in denial about security threats
- Most IT professionals wouldn't bet on security of own networks: report
- McAfee CTO: Security on embedded devices must be a priority
- Sophos acquires mobile management provider Dialogs
- McAfee's MOVE tackles 'all types' of virtual environment attacks