The enhanced SureView package allows for access to a Privileged User Monitoring and Auditing (or PUMA) Policy Pack that enables SureView to detect malicious acts and policy violations by privileged users, and SureView Spotlight, a software development kit that allows integration with best-of-breed analytic solutions.
“For more than a decade, customers have relied on SureView to detect and stop malicious activity inside their networks,” said Ed Hammersla, managing director of Raytheon Cyber Products at Raytheon Intelligence, Information and Services. “SureView is a proven solution specifically built to address human behavior and provide the insight necessary to recognize both malicious and non-malicious insider threats."
"The latest enhancements to SureView are the result of customer inputs and lessons learned from long-term deployment," Hammersla continued. "In fact, the PUMA Policy Pack was developed to meet requirements specifically articulated by our customers to mitigate the privileged user threat."
Another new SureView feature is host-based network traffic monitoring and collection, which sends alerts -- including the identity of the person involved -- if connections and ports are left open, leaving them vulnerable to attack. SureView also monitors and collects data published to Windows event log for integration with other technologies, Raytheon said.