Contextual network-wide visibility

Stealthwatch provides agentless enterprise-wide visibility, across on-premises, as well as in all public cloud environments. With knowledge of who is on the network and what they are doing, it also helps organizations to implement smarter segmentation customized to the business logic. And it provides actionable intelligence enriched with context such as user, device, location, time-stamp, application, etc.

Predictive threat analytics

Stealthwatch uses a pipeline of analytical techniques to detect advanced threats before they can turn into a breach. Using network behavior analysis, it can pinpoint anomalies, which are further analyzed using a combination of supervised and unsupervised machine learning for high-fidelity threat detection. This allows your security team to focus on the most critical threats. The Stealthwatch security analytics engine is also powered by the industry-leading Cisco Talos threat intelligence, that has the most up-to-date information for local-to-global threat correlation.

Automated detection and response

The combination of this context-driven enterprise-wide visibility and the application of advanced analytical techniques helps organizations to detect threats like unknown or encrypted malware, insider threats, policy violations, anything that “hits the wire”. Security teams can see alarms that are prioritized by threat severity, and have additional information to take actions easily. Stealthwatch also has the capability to store telemetry at scale, and provides network audit trails for forensic investigations into past events and for compliance monitoring. Finally, it integrates with your existing security controls in order to respond to the threat, without any business shutdown.

Extended Network

Extended Network

  

Data Center

Data Center

  

Branch

Branch

  

Cloud

Cloud