RSA ​​NetWitness® Platform
Instantaneous detection and response to ant threat, anywhere

RSA ​​NetWitness® Platform

  • An evolved SIEM (Security Information and Event Management) System that help you collect the information you need effectively.
  • Empowers security teams to strengthen their threat defense by rapidly detecting and understanding the full scope of a compromise.
  • Checking threats anytime, anywhere, solving case more efficiently.
Datasheet Official Website

  • Unparalleled visibility to see threats anytime, anywhere
  • Instantly detect the full scope of an attack
  • Strategic response to high-risk threats
  • Automatic incident response to level up Security Operation Center
  • Expose anomalous behavior with UEBA

Description
  • UEBA--RSA NetWitness UEBA leverages unsupervised machine learning, and our free, out-of-the box RSA NetWitness UEBA Essentials provides static rules that look for anomalous behavior.
  • FREE ENDPOINT INSIGHTS--Tight integration with RSA NetWitness Endpoint to provide additional context for detection and response to capture static data and Microsoft Windows logs.
  • ORCHESTRATION & AUTOMATION--New native response work flows and a new SOAR capability in RSA NetWitness Orchestrator.
  • A REDESIGNED AND INTUITIVE UI--Easy to use for both experts and less experienced analysts.
  • NODAL VIEW--Visual representation of threats to speed recognition of threat dynamics and identify the full scope of attack.
  • AUTOMATED AND DYNAMIC LOG IDENTIFICATION--For out-of-the-box log parsing accuracy and capabilities.
  • CLOUD SECURITY --Provides cloud visibility by capturing data from third party cloud providers such as Amazon Web Services, Azure and others.
  • DECODE--Ability to nd and decode Base64 and Hex, and deep-dive into network sessions with redesigned network investigations.