Boston, Mass., July 19, 2017 – CSPi (NASDAQ: CSPi), a provider of advanced security products and security services, as well as IT technology managed services, today announced that it is now part of the Cisco Technology Alliance Ecosystem. As a member of this Cisco partner community, CSPi has created an integrated cost-effective solution that automates breach detection. CSPi has harnessed the strengths of Cisco’s FirePOWER firewalls and CSPI’s Myricom nVoy security products to automate two critical elements of the breach investigative response process: cyber threat verification and full forensic data extraction. By having this data on hand, automatically, at the earliest stages of a breach the investigative response activities can typically be wrapped up within a few hours of total duration instead of the tens to hundreds of hours that is normal today.
CSPI’s Myricom® Automated Investigative Response (AIR) application continually ingests alert events, targeting user-identified critical assets from Cisco FirePOWER firewalls or NIPS systems, to find alerts that indicate a breach may be occurring. It takes the relevant event data, including the source and/or target address as well as the time stamp to be used to trigger the nVoy Packet Recorder, to generate a matching extract of the conversations between those devices. The extraction is initiated as the FirePOWER detects an intrusion – the resulting extraction file is the trigger to begin the incident response effort. This is made simpler by leveraging these extraction files, which contain the details required to quickly determine the severity and actions required.
These details include:
“Today’s security teams can experience a tremendous amount of event data generated from their IDS or firewalls. What they lack is something to focus their efforts and automatically generate the detailed files that contain information needed to research the full impact of the damage – if any,” said Gary Southwell, general manager, CSPi. “With the nVoy AIR application automatically triggering the extraction of the breach related capture files, a highly focused breach investigation can begin immediately and potentially reduce incident investigation for compliance purposes to a single day – or even down to a few hours. Going one step further, the nVoy solution is continually running, 365×7, improving the monitoring coverage, especially after-hours.”
CSPi (NASDAQ:CSPI) maintains two distinct and dynamic divisions – High Performance Products and Technology Solutions – with a shared vision for technology excellence. CSPi’s High Performance Products division offers extreme-performance products for diverse applications, including cybersecurity, financial trading, content creation/distribution, storage networking applications, as well computer signal processing systems. CSPi’s Technology Solutions division provides innovative technology solutions based upon a variety of product providers including wireless & mobility, unified communications & collaboration, data center and advanced security products, along with professional and managed services across those technology focus areas. CSPi Technology Solutions works with the world’s leading IT software and infrastructure companies to create solutions for the unique IT requirements of its customers. For more information, please visit www.cspi.com.
Cisco (NASDAQ: CSCO) is the worldwide technology leader that has been making the Internet work since 1984. Our people, products, and partners help society securely connect and seize tomorrow’s digital opportunity today. Discover more at newsroom.cisco.com and follow us on Twitter at @Cisco.
Myricom is a registered trademark of CSP Inc. All other brand names, product names or trademarks belong to their respective owners. Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. A listing of Cisco’s trademarks can be found at www.cisco.com/go/trademarks.