What are you looking for ?
Advertise with us
RAIDON

Stellar Cyber: Open XDR Eases Big Cybersecurity Storage Woes

Open and flexible approach to long-term storage of large volumes of security data eases concerns about storage complexity and costs.

Stellar Cyber announced that its open and flexible approach to the long-term storage of large volumes of security data eases concerns about storage complexity and costs seen in legacy SIEMs or some proprietary XDR solutions used by security operations centers.

Click to enlarge

Stellarcyber Open Xdr Circle Graphic

Cybersecurity is a data problem, with best practices necessitating capturing and retaining all available data to properly evaluate potential threats and keep an audit trail for future investigations. This approach causes storage costs and makes it more difficult to identify real attacks, because analysts often can’t see the forest for the trees with the massive amounts of data. Voluminous data also makes forensics and threat hunting almost impossible on some legacy SIEMs due to poor query performance.

The company’s intelligent SOC platform is more efficient, storing only security-relevant metadata in a scalable, elastic data lake, which reduces the amount of storage needed and makes it easier to identify anomalies more quickly. Once it collects the metAdata: firm‘s AI-powered analytical engine evaluates it and alerts analysts to the most complex attacks.

Click to enlarge

Stellarcyber Open Xdr Scheme

We were having a real problem storing data from a traditional SIEM,” said Joe Morin, CEO, CyFlare. “Stellar Cyber’s metadata parsing and flexible storage options save us money on resources while making our analysts more efficient.

Flexible storage designed for scalability and efficiency
Most SIEM products force collection and storage of irrelevant data, and also they don’t offer any flexibility in what, how or where data is stored. With the company, users have many choices through its Open XDR platform. They can pick the right data to be collected, customize data retention time by type of data (on a per-tenant basis in a multi-tenancy environments), choose whether data is kept in hot or cold storage, and pick where to house cold storage (on-premises with a NAS or JBOD system or in the cloud) to save on costs.

Single unified Data Lake

Stellar Cyber Single Unified Data Lake

Scaling storage is a top complaint by legacy SIEM users – the SIEM sucks up all the data, but then you have to store it somewhere,” said Zeus Kerravala, principal analyst, ZK Research. “Stellar Cyber’s platform keeps only the relevant data for security analysis and then gives users a lot of options for how and where it’s stored.

Stellarcyber Open Xdr Ecosystem

The firm‘s fast forensic analysis and threat-hunting capabilities are built on top of its scalable elastic data lake, which is designed for storing large volumes of data with search performance on a cloud-native, microservice architecture. The collected data is normalized, enriched in real time with context, correlated, and can be searched quickly by any data field or any combination of fields. Data is automatically evaluated for anomalies by the platform’s AI-powered detection engine, and analysts can use pre-built or home-grown threat-hunting playbooks to ferret out threats wherever they reside.

storage is a major challenge for users of security systems, particularly legacy SIEMs,” said Steve Garrison, VP, marketing, Stellar Cyber. “We thought through this issue when designing our Open XDR platform, and now offer a number of ways in which customers can optimize their storage to improve efficiency and save costs.

About Stellar Cyber
It is the innovator of Open XDR – the intelligent, next-gen security operations platform that provides high-speed, high-fidelity threat detection and response across the entire attack surface. An Open-XDR platform, Stellar Cyber is an easy-to-use investigation and automated response platform, delivering a 360° view of entire attack surface with readily-available, high-fidelity detections delivered through pre-built, integrated capabilities including NDR, CDR, NG SIEM, UEBA, and Automated Threat Hunting. The firm’s platform helps eliminate the tool fatigue and data overload often cited by security analysts and enables them to respond in real time rather than days or weeks. The company is based in Silicon Valley and is backed by Valley Capital Partners, Northern Light Venture Capital, SIG, Big Basin Ventures and other investors.

Resources:
Blog: How to leverage Open XDR as a strategic advantage for MSP and MSSP partners
Blog: How Stellar Cyber Addresses Data Storage Pain
Blog: With Stellar Cyber’s Open XDR, No EDR is an Island
Blog: An Integrated TIP for Simplified and Efficient Security Operations
Stellar Cyber security operations platform    
Stellar Cyber case studies

Articles_bottom
ExaGrid
AIC
ATTOtarget="_blank"
OPEN-E