Industry Leaders RSA And Guidance Software To Collaborate On Automated Cyber Security Incident Response
Guidance Software Inc. (NASDAQ:GUID),
World Leader in Digital Investigations™, today announced an
interoperability partnership with RSA®, the Security Division of EMC
(NYSE: EMC), to interconnect...
Guidance Software Inc. (NASDAQ:GUID), the World Leader in Digital Investigations™, today announced an interoperability partnership with RSA®, the Security Division of EMC (NYSE: EMC), to interconnect Guidance’s EnCase® Cybersecurity and the RSA® enVision® security information and event management (SIEM) platform to enable automated incident response and management. The integration will enable the RSA enVision platform to automatically trigger an EnCase Cybersecurity incident response, including exposing, collecting, triaging and remediating data related to threats – essentially taking action on or gathering data about a security event that might otherwise have been inappropriately disregarded. The interoperability of the two solutions will allow organizations to reduce the time it takes to remediate threats, thus reducing the high cost of response and the risk of exposing sensitive data to loss or theft. “Industry experts suggest the average cost of responding to a single cyber attack was $5.5 million in 2011 1. Moreover, the time it takes an enterprise to respond to cyber attacks ranges from days for simple attacks to months for complex targeted attacks. The interoperability between EnCase Cybersecurity and RSA enVision platform will significantly reduce both the cost and the time it takes to respond to a cyber attack, allowing organizations to more effectively defend their networks and digital assets,” said Victor Limongelli, president and chief executive officer, Guidance Software. “We are pleased to have entered this interoperability partnership with such an industry leader and look forward to delivering this integrated solution to organizations across the globe.” EnCase Cybersecurity is endpoint incident response and data auditing software designed to eliminate the time gap between being alerted about a cyber attack and responding to that attack. The latest version of the software includes a response automation application-programming interface (API) that gives organizations the ability to integrate the software with security alerting systems. Customers using the API can integrate all of EnCase Cybersecurity’s incident response capabilities into their SIEM environment and automate those functions that are most important to their security processes.