By leveraging the ArcSight SIEM Platform to continuously monitor, correlate, filter and send critical security events to McAfee ePO, McAfee customers can promptly respond with security countermeasures targeting those systems affected.
For example, the systems on a subnet penetrated by a worm attack observed by the ArcSight SIEM Platform could be promptly updated with new anti-virus signatures, software or policies as a countermeasure. This integration also combines the proactive compliance auditing of McAfee Policy Auditor with the compliance event archiving, alerting and reporting of ArcSight Logger in support of PCI, SOX, HIPAA and other regulatory requirements.
"The ability to quickly detect and mitigate threats or compliance violations, and minimise the associated business risk is a business imperative," said Jeff Scheel, senior vice president, business development, ArcSight. "As leaders in our respective segments of the security industry, we believe that McAfee and ArcSight together offer a comprehensive end-to-end risk mitigation solution. We anticipate that our partnership with McAfee will dramatically reduce the cycle time from detection to response while offering companies continuous compliance oversight."
"We are excited to welcome ArcSight into the McAfee Security Innovation Alliance," said Joe Gottlieb, vice president, corporate strategy and technology alliances, McAfee. "The ArcSight event management and log management offerings are very complementary to the McAfee portfolio, but more importantly, we believe that the way that we are tightly integrating them with ePO will help our joint customers reduce their total cost of security and compliance operations." |
