BREACHES HAPPEN. BE PREPARED. F-SECURE RAPID DETECTION SERVICE

Transcription

1 BREACHES HAPPEN. BE PREPARED. F-SECURE RAPID DETECTION SERVICE

2 TAKE A HOLISTIC APPROACH TO CYBER SECURITY. Sophisticated corporate cyber attacks have become commonplace. They circumvent even the best-defended perimeters to disrupt services and steal your data. Once inside your systems, attackers will hide their presence and move laterally within your organization, harvesting valuable information. Infrastructure breaches can go unnoticed for weeks, months even years. A strong defensive perimeter is critical in defending against such attacks, but you can t rely on defense alone. True cyber security starts with the assumption that an incident will eventually occur. It involves adaptive protection a holistic process that integrates predictive, preventive, detective and responsive capabilities that work together to quickly identify, contain, and remediate cyber breaches. UNDERSTAND YOUR RISK, KNOW YOUR ATTACK SURFACE, UNCOVER WEAK SPOTS MINIMIZE ATTACK SURFACE, PREVENT INCIDENTS REACT TO BREACHES, MITIGATE THE DAMAGE, ANALYZE AND LEARN RECOGNIZE INCIDENTS AND THREATS, ISOLATE AND CONTAIN THEM

3 TOP EXPERTS, TECHNOLOGY AND INTELLIGENCE AT YOUR SERVICE WHEN WE DETECT AN ATTACK, YOU LL KNOW ABOUT IT IN LESS THAN 30 MINUTES. SENSORS ANALYTICS ALERT ANOMALY RAPID DETECTION CENTER Rapid Detection Service is an enterprise-grade managed service that detects, quantifies and gathers evidence regarding advanced attacks. Here s how it works: COLLECT ALL RELEVANT DATA Install lightweight sensors on your workstations and strategically place sensors throughout your network. ANALYZE AND CAPTURE Capture advanced cyber attacks with big data analytics and behavioral modelling. This is powered by attacker intel gathered from actual cyber investigations, continuous threat analysis and collaborative security research. EXPERT OVERSIGHT, FAST RESPONSE Our top cyber experts monitor and analyze threat intelligence data 24/7 at our purpose-built Rapid Detection Center. If an incident is detected, our experts will inform your experts of threat specifics, and how to isolate, remediate, and learn from the incident.

4 COLLECT ALL RELEVANT EVIDENCE ACROSS YOUR ENDPOINTS AND NETWORK Advanced attacks are low, slow, and stealthy. They can go unnoticed for years. To detect and respond to them, all relevant evidence must be collected and stored securely. F-Secure Rapid Detection Service deploys lightweight endpoint and network sensors that provide the level of visibility and detail required to detect and respond intelligently to attacks. Since advanced attacks often exploit multiple vulnerabilities and can remain dormant for long periods, you can t rely on a single source of information. Employees switch between devices, use a range of public and private cloud applications, and work remotely outside of the corporate network. Endpoints are a source of critical evidence that must be covered along with network-based solutions. Otherwise many attacks will go unnoticed. The more evidence we can gather, the faster, simpler and more accurate the investigation and clean-up will be. As part of Rapid Detection Service, we provide tamper-proof, secure storage to prevent attackers from destroying vital evidence.

5 DETECTING THE UNDETECTABLE: MAN + MACHINE How do you detect an advanced attack? You make use of the most advanced analytics and machine learning technologies. But that s not all. You ve got to think like an attacker. ELIMINATING FALSE POSITIVES We correlate data and events from a variety of sources to build a detailed picture of what s happening in your network. In our experience, it s the only way to hunt for intruders But even with advanced big data analytics, behavioral rule sets and machine learning systems, false positives are still rather common. Cyber security experts at the F-Secure Rapid Detection Center change all that. We leverage our understanding of attacker strategies and tactics to confirm whether anomalies are actual incidents. We have an intimate knowledge of how attackers breach defenses because we perform real life investigations. We also penetration-test customer environments, track criminal group activities, and perform research together with industry partners and security authorities across Europe and around the world. The balance of human and machine intelligence that we achieve enables us to eliminate false positives. Real attacks get reported. And a sophisticated response kicks in.

6 RESPOND WITH ACTIONABLE INTELLIGENCE When a breach occurs, you need more than just an alert. In order to plan the best response possible, you need to understand the specifics of the attack. With Rapid Detection Service, one of our security experts will open a dialogue with your organization whenever a critical incident occurs. F-Secure also provides optional on-site services for incident management and forensics investigations. Quick detection, accurate diagnoses, and expert advice on remediation will enable you to limit damage and return to business with minimal delay. During the early-breach phase of an intrusion, you will get actionable intelligence regarding: The specific actions that took place, and when How your defenses were breached How to isolate what s been affected Advice on incident remediation

7 WHY CHOOSE F-SECURE? F-Secure Rapid Detection Service provides an immediate, tangible return on investment. You ll spend a lot less time and money running expensive internal security projects and hiring and training personnel to handle complex incident response cases. For organizations that have invested in SOC, SIEM, or IDS infrastructure, Rapid Detection Service provides an additional layer of security that easily integrates into and enhances any existing ecosystem. OUR CUSTOMERS PREFER F-SECURE FOR MANY REASONS. HERE ARE JUST A FEW: As a European vendor based in Finland, we are subject to some of the strictest privacy laws in the world. We have never shared data with national or international security services, and we never will. We have been deploying highly effective system-level protection components onto millions of customer endpoints for over 20 years. We don t rely exclusively on technology. Our cyber security people have both high-level knowledge of the global threat landscape and in-depth technical knowledge of the tactics, techniques and procedures that attackers use.

8 THIS IS F-SECURE FOR BUSINESS F-Secure is a European pioneer in cyber security and data protection. We help businesses solve the challenges of modern cyber security with over 25 years of experience. Our award-winning solutions are globally recognized by numerous industry experts and trusted by millions of private and business customers worldwide. Together with our network of over 200 operator and thousands of IT service partners, we are able serve our customers locally all across the globe. F-Secure goes beyond traditional anti-malware. We offer best-in-class endpoint protection, security management, and cyber security solutions. Our analysts work 24/7 across the globe to protect our customers from the latest threats, in close cooperation with industry partners and international security authorities. IT S ALL PART OF OUR COMMITMENT TO KEEPING YOU SAFE NOW AND FOREVER.