AccessData Announces Interoperability with HP ArcSight to Deliver Accelerated Incident Response to Security Threats

SINGAPORE – (October 1, 2013) – AccessData Group, a leading provider of digital forensics, cyber-security, and e-discovery software, today announced a new solution that operates with the HP ArcSight platform and designed to deliver accelerated incident response to security threats. This new solution allows bi-directional communication between AccessData’s Cyber Intelligence & Response Technology (CIRT) platform with the HP ArcSight Security Information and Event Management (SIEM) platform.

“We know that HP is committed to continual innovation in cyber security, and this new solution enables our customers to stay ahead of new threats,” says Chad Gailey, vice president, Worldwide Channel Sales at AccessData.  “This solution has already demonstrated success out of the gate, with early sales to both a multi-national defense organization and a Fortune 100 consumer packaged goods company.”

The high level of interoperability between the CIRT platform and HP ArcSight SIEM answers the critical need for more streamlined and holistic incident response and faster response times in the face of advanced persistent threats, sophisticated hacking attacks, and constantly evolving malware.

CIRT extends the functionality of the HP ArcSight SIEM platform by providing three key functions. First, it delivers holistic rapid response by integrating the critical capabilities required for comprehensive root cause analysis – full packet capture network forensics, advanced computer forensics (hard drive, memory, and peripherals), malware triage, and enterprise-wide auditing for compromise assessment. Second, CIRT enables real-time collaboration among all security and response teams; and third, it provides automated batch remediation; so, organizations are able to eradicate threats, not just contain them.

The interoperability of CIRT and HP ArcSight SIEM is unprecedented because users are able to execute operations, view analysis, and launch remediation operations from within either platform interface – quickly and efficiently. The response operations can be customized and complex. Furthermore, unlike other solutions, the automated response is holistic. It is not only endpoint analysis or a combination of watered down network and endpoint forensics. It allows organizations to gather actionable intelligence very quickly and provides real remediation.

“To combat the growing number of cyber threats, organizations today must take a holistic approach to security,  one that provides broad visibility into vulnerabilities and real-time capabilities to stop threats in their tracks,” said Frank Mong, vice president and general manager, Solutions, Enterprise Security Products, HP. “We want to ensure our customers have seamless access to best-of-breed technology to address every stage of a potential cyber threat, and this new interoperability with AccessData is a flagship example of this program at work.”