No one connects their site to the Internet without deploying multiple security tools that include a firewall, IPS, antivirus, DLP, and others. Yet, every day we see another headline announcing another major but preventable breach. Why? Because the constant barrage of security alerts from those devices overwhelms the teams that operate them, making it impossible to find the “needle in the haystack” needed to detect the critical traces of an intrusion or data breach before it’s too late. Ixia ThreatARMOR makes that haystack smaller by automatically applying an always-on threat intelligence feed to your network, eliminating traffic to and from known-bad sites and untrusted countries. ThreatARMOR reduces up to 80% of the malicious and invalid traffic that generates security alerts. This saves operations teams from the impossible task of tracking down all those alerts.
Ixia ThreatARMOR is a Micro Focus ArcSight CEF certified product. ThreatARMOR CEF logs containing information about blocked IP addresses are forwarded to ArcSight. Malicious actor host information from Ixia can be centrally monitored in ArcSight, and correlated with other security events being managed by ArcSight to enable more effective detection and mitigation of security threats. Furthermore, the integration reduces unnecessary alert noise from untrusted countries or other known-bad sites.
Integration: Inbound CEF
Suggested for you are based on app category, product compatibility, popularity, rating and newness. Some apps may not show based on entitlements. Learn more about entitlements.
May 2016 is the most recent release
Please upgrade to one of the following broswers: Internet Explorer 11 (or greater) or the latest version of Chrome or Firefox