The capabilities are called Operational Network & Security Intelligence Dashboard and User-defined Threat Criteria, which delivers actionable security data to users of the company's StealthWatch System.
With ONSI Dashboard, StealthWatch security alarms are more closely aligned to the various steps of the cyber-attacker's "kill chain," the company said, and include alarms to alert administrators about specific kill chain behaviors happening within their network, such as command-and-control activity, internal malware propagation and data hoarding/exfiltration.
StealthWatch, with OSNI, turns data into actionable knowledge for faster detection, more precise incident response and improved troubleshooting of malicious behaviors, Lancope said.
The User-defined Threat Criteria capability allows users to create custom security events and alarms, based on their own policies or specific threats.
"With the extraordinary number of threats facing today's enterprises on a daily basis, incident responders do not have the luxury of time on their side," said Kerry Armistead, vice president of product management for Lancope. "Security success today necessitates the ability to very quickly identify, interpret and respond to the myriad attacks infiltrating corporate networks.
"Security is a constant battle, and our new features arm StealthWatch System users with more precise and powerful tools for rapidly uncovering and remediating a broad spectrum of attacks."