Virtualization Technology News and Information
Outlier Security Launches with Industry's First SaaS Agentless Endpoint Threat Detection and Response Product

Today, Outlier Security, whose mission is to detect new and advanced threats missed by legacy cybersecurity systems, launched at the Gartner Symposium/IT Expo in Orlando. Outlier Security's product, Outlier, is the first, SaaS-based, agentless endpoint threat detection and response (ETDR) product. Enterprises will benefit from comprehensive endpoint threat monitoring, alerting and analysis without the headaches and costs associated with managing agents.

"The volume and frequency of major breaches show that today's cyber security solutions are not getting the job done," said Greg Hoglund, CEO of Outlier Security. "Enterprises need a way to quickly close the loop between events happening on endpoints and incident response. Outlier is offering an agentless endpoint security solution that collects comprehensive data from endpoints, applies cloud-based analytics and threat detection, and helps incident responders proactively hunt for new and unknown cyber threats in enterprise networks. Outlier shows that advanced endpoint monitoring and security analytics don't have to be hard or painful."

While security professionals have good tools for collecting and analyzing log data and network traffic, they must resort to difficult, time-consuming, manual processes to uncover compromises on endpoints and assess their impact. Leading industry analyst firms Gartner, Forrester and IDC recommend that organizations deploy scalable endpoint visibility systems to address this gap, but there is a hitch. Until now, all of these systems have required agents on all monitored endpoints -- agents that many IT operations groups refuse to deploy and manage.

How Outlier Works

The Outlier system continually collects digital evidence from computers throughout the network and applies advanced analytics, including statistical analysis, machine learning algorithms and big data threat intelligence. The analytics platform automates the best practices of world-class cyber security investigations to validate alerts from SIEM and other security tools, and to differentiate between high-risk alerts and false positives. Outlier's cloud-based, agentless technology removes the complexities of managing agents, and has no impact on endpoint system users.

Benefits of the system include:

  • Automated Security Analytics: The system not only detects known Indicators of Compromise (IOCs), but also identifies anomalies and statistical outliers to pinpoint new and unknown malware, malicious actions and suspicious events. A multi-stage reasoning process separates real threats from low-risk indicators and false positives, allowing incident response teams to focus on critical issues.
  • Alert Reporting and Endpoint Visibility: Outlier empowers security teams to quickly respond to threats and examine suspect computers. Automated alerts include underlying contextual evidence for threat verification. The flexible IOC query capability allows ad hoc analysis of network-wide historical endpoint data.
  • Lowest Total Cost of Ownership: Delivered as Software-as-a-Service and agentless, Outlier dramatically reduces the cost of deploying and managing an endpoint threat detection and response solution.

According to a Forrester report by Rick Holland titled, Targeted-Attack Hierarchy Of Needs, Part 2 (September, 2014), "You can have the most effective security control, but if it is so intrusive that employees can't work, it won't be in production for very long."

Published Tuesday, October 07, 2014 7:09 PM by David Marshall
Filed under: ,
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<October 2014>