Collaboration Automates Incident Escalation, Assessment, and Corrective Action Reducing Cost and Risk While Stopping Attacks in Their Tracks
SAN FRANCISCO/CAMBRIDGE, Mass. — February 25, 2014 — Co3 Systems, the leader in Incident Response Management Systems, today announced technology interoperability with HP ArcSight, a leading Security Information and Event Management (SIEM) platform. The collaboration is designed to transform the incident response process from a manual, people-bound, error-prone process to one that is automated, intelligent and highly efficient. As a result, organizations can dramatically improve incident response times—stopping attacks in their tracks—and heighten regulatory compliance.
A slow response to security incidents is enormously costly as attacks become more frequent, targeted and sophisticated. Recent research commissioned by HP and conducted by the Ponemon Institute cites that on average it takes 416 days to detect a breach, with 94 percent being reported by a third party. More troubling is that, since 2010, the time needed to resolve a breach has increased by 71 percent.
“The quicker and more capable the response, the greater the likelihood it stops an incident in its tracks,” said John Bruce, CEO at Co3 Systems. “This interoperability with HP ArcSight means that customers are automating their entire incident response process, pulling in correlated threat intelligence, response best practices and any appropriate privacy breach requirements. We’re seeing far more than an incremental gain in incident response capability, it’s completely transformative.”
The interoperability between the HP ArcSight Security Information and Event Management platform and Co3 allows organizations to fast track the escalation, investigation and response to all security incidents, whether they are routine events that simply need to be tracked or major incidents that require a concerted response effort. These incidents can automatically escalate from HP ArcSight to Co3. All pertinent event information is immediately sent to Co3—including artifacts (such as IP addresses or malware samples) and other Indicators of Compromise (IOCs). Co3 automatically correlates this information with past incidents as well as an array of third party threat intelligence feeds for valuable additional context. The platform then instantly generates a comprehensive incident response plan based on the specific incident characteristics. If the incident involves sensitive personal information, the plan includes suggested privacy breach regulatory requirements and best practices. The incident response team can manage the complete cycle of the incident, from investigation through successful resolution, all within Co3.
“With the number of threats growing in both frequency and complexity, the sheer volume of attacks is overwhelming many organizations’ capacity for corrective action,” said Chris Triolo, vice president, Professional Services and Support, Enterprise Security Products at HP. “With expert threat detection from HP ArcSight and automated incident response planning from Co3, security teams can dramatically improve their ability to more efficiently and consistently respond to incidents while also enhancing their organizations’ compliance.”
Co3 Systems was the first to market with a daily use and preparedness tool for security and privacy incidents and is considered today as the industry standard. Co3 enables organizations of all sizes to efficiently prepare for and rapidly manage the incident response process for security incidents or privacy breaches via a platform composed of two modules. The Co3 Privacy Module provides an easy, automated way to ensure consistency and accountability—across teams, organizations and external stakeholders in any geography and under any jurisdiction—in managing incidents that concern personally identifiable information (PII). The Co3 Security Module allows automated, single-pane incident management in a secure, isolated environment for general security incidents including malware infections, DDoS attacks, device or Intellectual Property theft and system intrusions.
Follow Co3 Systems:
Co3 Systems Blog: https://www.co3sys.com/blog
Events & Webinar Series: https://www.co3sys.com/news/events
About Co3 Systems:
Headquartered in Cambridge, MA, Co3 Systems is leading the market for Incident Response Management Systems. Co3's platform helps organizations prepare, assess, manage and mitigate security incidents, including privacy breaches. Co3 is led by a proven team of security entrepreneurs including security legend, Bruce Schneier (CTO). In a short period of time, Co3 has emerged as the gold standard for how organizations—from Fortune 500 companies, to smaller organizations— manage incident response. On the web at www.co3sys.com.