Only 56 percent of security alerts are investigated, and more than half of those are not remediated, according to the Cisco 2017 Annual Cybersecurity Report. Responding to these alerts is an overwhelming job, and most organizations do not have the security staff to keep up. Adding effective security measures for public cloud workloads—with solutions that can reduce the number of false positives—is a critical task. Cisco Stealthwatch Cloud uses dynamic learning to create a model—a kind of simulation—for each device and network entity. This model is able to:
- Dynamically determine the role of an entity based on its behavior and then detect activities inconsistent with that role.
- Identify anomalies and sudden changes in behavior, both in data transmission and in access characteristics.
- Predict host or device behavior based on past activities, and assess observed behavior against those predictions.
Stealthwatch Cloud’s Public Cloud Monitoring provides the visibility and threat detection capabilities you need to keep your workloads highly secure in Amazon Web Services (AWS), Google's Compute Platform (GCP), and Microsoft Azure environments.
For the latest information regarding Cisco Stealthwatch Cloud see the product page.