Security Partner - ArcSight
Categories: siem partner
Learn how joint ArcSight and Cisco solutions monitor every aspect of a Cisco network, including identity, reputation, and cloud data.
Joint ArcSight and Cisco solutions provide monitoring for every aspect of a Cisco network, including identity, reputation, and cloud data. ArcSight technology helps enterprises correlate internal security data with Cisco security solutions, such as global threat detection.
ArcSight Logger can be deployed in a Cisco-certified solution to extend the functionality of the Cisco Security Monitoring, Analysis and Response System (MARS). To increase security monitoring efficiency in wireless environments, ArcSight connector technology is also integrated with Cisco Mobility Services Engines.
ArcSight supports monitoring of almost 40 Cisco products, and has monitored Cisco solutions for close to a decade.
Cisco and ArcSight security monitoring and log management solutions can help you achieve optimum control over IT assets.
Cisco Security MARS and ArcSight Logger facilitate unified analysis across all types of data. You can perform simpler, faster forensic investigations, as well as real-time and historical detection and analysis of IT security threats.
These joint solutions offer faster, better, and easier investigation of all operations data required for change management, network management, and application management. ArcSight Logger also helps you comply with all major IT regulations, with audit-quality data collection and storage, pre-packaged reporting, and efficient storage of regulated data.
The Cisco and ArcSight Network Assurance Solution provides extensive visibility into security threats and policy violations. Existing security information and event management (SIEM) applications provide location context only in the form of network ports. This context then must be manually translated into physical locations, which is time-consuming and expensive.
The Cisco Mobility Services Engine can track the physical location of both wired and wireless devices, and inject location intelligence into the ArcSight SIEM. The ArcSight platform maps assets to users to detect, prioritize, and visualize internal threats. ArcSight also preserves the location history and location-based policy violations of assets.