30 Cool New Security Products And Solutions Launched At RSA 2016
The Latest And Safest
The RSA Conference in San Francisco presents the biggest opportunity of the year for companies to tout their latest and greatest security-related technology. This year was no different, with companies both big and small rolling out new technologies to better protect customers, detect attacks and remediate problems. As security is likely to present as big of a challenge as it ever has -- if not bigger -- in 2016, these 30 new solutions look to be potentially invaluable. For companies and partners looking to protect themselves from -- as well as anticipate and thwart -- a rising tide of security threats, here are 30 solutions that caught our eye at this year's event.
CounterTack
CounterTack is building on its momentum in the next-generation endpoint security market, unveiling new capabilities, enhanced remediation and response, integration, workflow and the efficacy of advanced threat detection and analysis at RSA. To its flagship Sentinel offering, CounterTack, Waltham, Mass., added new threat visualization, dashboard, real-time advanced attack capabilities for ransomware and PowerShell, and new integrations with SIEM vendors and Blue Coat Systems. The company also announced endpoint threat quarantine and process killing capabilities to its Malware Hunter offering, as well as deeper analytics capabilities and Linux threat data to Responder Pro.
Skybox Security
On Monday, San Jose, Calif.-based security analytics company Skybox Security revealed the launch of Skybox Horizon, an enterprise attack surface visualization and management tool that integrates with the company's flagship Security Suite. The tool provides a visual way for chief information security officers to consolidate and analyze data from the environment to pinpoint vulnerabilities, possible attack vendors, misconfigurations and areas of risk. From there, the tool helps CISOs manage the correction of these issues.
"For years, CISOs have struggled to gain a satisfactory level of visibility over their attack surface so they can truly understand their organizations' vulnerability to threats," founder and CEO Gidi Cohen said in a statement. "When CISOs only have access to partial information, they can't analyze data in context, which limits their ability to quickly make decisions about where to direct scarce resources. We're changing this with Horizon."
Security First Corp.
Security First Corp., Rancho Santa Margarita, Calif., is looking to alleviate the security concerns of moving to the cloud with a new cloud storage gateway solution. Launched Monday, the SPxGateway solution provides a virtual appliance for both data protection and storage across multiple cloud environments, using encryption and by randomly splitting the data at the bit level into secure shares across multiple environments, an approach the company calls Cloud Spanning.
"The path to the cloud has never been easier or more secure," Mark O'Hare, president and CEO of Security First Corp., said in a statement. "SPxGateway makes cloud data protection concerns a thing of the past by fulfilling the three critical components of a security solution -- Confidentiality, Integrity and Availability -- in a single product."
Accenture
On Monday, Accenture expanded its Accenture Managed Security offerings, rolling out a new solution called the Accenture Cyber Intelligence Platform. The launch takes advantage of Dublin-based Accenture's big-data processing powers and its Accenture Cloud Platform, adding machine learning, artificial intelligence and analytics for better detection, prevention and remediation capabilities. It also wraps in technology from Cloudera and Open Network Insight.
"Today's best network protection devices alone are not enough to challenge the new reality of cybersecurity," Vikram Desai, managing director, Accenture Analytics, said in a statement. "Attackers continue to evolve by leveraging data technology, and clients have urged us, as the leading provider of data science solutions, to help them fight back. Our new Accenture Cyber Intelligence Platform gives them back the upper hand."
CipherCloud
Just before the RSA event, CipherCloud launched a new solution it is calling Cloud Security Broker. The solution expands the San Jose, Calif.-based company's cloud security capabilities by adding visibility, data loss prevention, collaboration controls and selective encryption across popular cloud applications, such as Office 365, SharePoint, OneDrive, Box, Google Drive, Dropbox, Amazon S3, Azure Storage and other cloud services. Specific security capabilities include user activity monitoring, threat detection, granular policy control, remediation, collaboration, encryption and mobile security.
Qualys
On Monday, Redwood City, Calif.-based Qualys lifted the curtain on a series of expansions to its cloud security lineup. Those additions included cloud-based patch management through a partnership with Heat Software, a threat dashboard called Qualys ThreatView and a tool called Qualys Security Assessment Questionnaire Service to help businesses and auditors align around governance, risk and compliance.
Fortscale
User behavior analytics company Fortscale ramped up its insider threat capabilities Monday, launching Fortscale 2.5 with capabilities for automatic, hands-off insider threat detection. San Mateo, Calif.-based Fortscale said the new solution essentially eliminates false positives by ingesting access and authentication logs, building baseline behaviors and providing what it calls Smart Alerts for suspect behavior using analytics and machine learning. From there, security analysts can drill down into unusual activity.
GuardiCore
San Francisco-based GuardiCore said Monday that it had expanded its Centra Security Platform, adding new visibility and threat-detection capabilities to the data center security platform. The new GuardiCore Reveal module provides granular visibility and threat detection into data center and cloud applications. Specific features of the module include micro-segmentation, threat detection for anomalous or suspicious behavior, and application flow monitoring. The solution will be available as part of the Centra Security Platform 2.0 release in Q2, the company said.
Untangle
On Wednesday, San Jose, Calif.-based Untangle unveiled what it is calling the world's smallest next-generation firewall. The u25 is aimed at small businesses, as well as home and branch offices, the company said, offering a small footprint and capabilities around network security, traffic filtering and monitoring, bandwidth optimization, VPN and captive portal. Pricing for the solution, which is now generally available in the U.S., starts at $399.
Egnyte
Mountain View, Calif.-based file security company Egnyte on Wednesday unveiled the launch of its new enterprise-grade encryption solution. Called Egnyte Key Management, the solution is an end-to-end encryption solution offering encryption key management options. Through the offering, enterprises can manage their encryption keys through Egnyte, in their own data centers or in the cloud.
"Our customers do not want to trade their ability to collaborate for more control over encryption keys -- they want to do both," said Kris Lahiri, chief security officer at Egnyte, in a statement about the news. "As more organizations want to increase control over encryption keys, Egnyte Key Management is the only solution that will enable collaboration at the most secure levels." The solution will be available April 3, the company said.
Iovation
On Monday, Iovation, Portland, Ore., rolled out a new solution to help stop account takeover and preserve the user experience with a password-less authentication offering for consumer websites. The new Customer Authentication service uses continuous device authentication to remember known devices and allow low-risk users directly into their accounts, while triggering higher-risk users or transactions to enter a password.
Serro
On Wednesday, San Francisco-based solution provider Serro rolled out AuSM (pronounced "awesome"), an open-source, software-defined networking solution for integrated policy management. The solution works across multiple network types, including WAN, data center network and storage systems. The company said the solution will help businesses simplify their critical network components into a single location, using APIs.
BluVector
Acuity Solutions, based in McLean, Va., unveiled the latest edition of its BluVector machine learning malware detection solution Tuesday. BluVector 2.0 adds new artificial intelligence capabilities that allow a company to train the solution on its environment to better detect both traditional and zero-day malware threats. New features in BluVector 2.0 include environment-specific learning, grid deployment and cyber-hunting tools.
"BluVector's machine-learning capabilities are a game-changer for enterprise security teams as they seek to defend against all forms of malware, both known and unknown. We look forward to helping enterprises across industries to stay ahead of these threats to dramatically reduce both the number of successful attacks and the millions of dollars spent hunting and remediating security breaches," Kris Lovejoy, president and CEO of BluVector, said in a statement about the launch.
Vertiscale
Workspace-as-a-Service vendor Vertiscale, Austin, Texas, revealed a solution aimed specifically at MSPs in the health-care space. The new solution allows for health-care organizations to securely and remotely access their applications, desktops and protected health information, all while complying with HIPAA (Health Insurance Portability and Accountability Act) regulations. It uses encryption for data at rest and in transit, keeps protected data off end-user devices, applies stringent policies for user access and logs access records in the event of an audit. The solution is designed for multitenant deployment, has no upfront costs and is sold under a flexible licensing model.
Centripetal Networks
A new threat intelligence platform, launched by Herndon, Va.-based Centripetal Networks on Monday at RSA, aims to help businesses identify and prioritize threats before they become a problem. The new RuleGate Network Protection System 2.7 pulls in threat intelligence from more than 40 sources and uses analytics to alert, prioritize and block malicious traffic. Features of the solution include intelligent packet capture, SSL inline content inspection, and multidimensional indicators. New features added on Monday include network path correlation, live geographic visualizer, pivot to source, eight network filtering ports and support for 802.AD QinQ nested VLAN tags.
Biscom
Enterprise document solutions company Biscom, Chelmsford, Mass., launched a new practice Monday, a security consulting practice aimed at the small and medium-size enterprise market. The company says it will provide cybersecurity professionals on site to help a business improve its infrastructure security, build policy documents and provide security training. The company will also offer secure communications technology, secure synchronization and sharing, and secure enterprise fax solutions.
ManageEngine
IT management company ManageEngine is expanding its privileged account management solution with an addition to its suite. Called Key Manager Plus, the solution unveiled Monday provides a way for businesses to manage SSH keys as well as provide visibility. This type of solution is important, the company said, because many organization use SSH for remote access and data transfer security, though if the keys are left unmanaged, that could present a major security challenge.
"With identity thefts and unauthorized privileged access lying at the root of modern day cyberattacks, managing the SSH key life cycle has become a significant aspect of privileged access management programs. With Key Manager Plus, we're helping organizations deploy a complete privileged access management solution," said Rajesh Ganesan, director of product management at Pleasanton, Calif.-based ManageEngine, in a statement.
Titus
Data classification and protection company Titus, based in Ottawa, Ontario, expanded its offerings Tuesday with the launch of data discovery and classification tool Titus Illuminate. The new solution allows organizations to discover data, identify the business use of data, classify the data, apply content protection, analyze data, integrate other solutions like DLP and ERM, and work with the Titus Classification Suite.
With the tool, "organizations now have a way to easily and effectively discover, identify and analyze all of the files that an organization has stored either within the walls of the company or in the Cloud. [It] is the only data classification vendor that does this type of comprehensive data inventory and analysis," founder and CEO Tim Upton said in a statement.
E8 Security
E8 Security, Redwood City, Calif., expanded its user behavior analytics platform just before the RSA event, unveiling the addition of new threat identification capabilities. Those new capabilities include expanded endpoint analytics, behavioral insight and adaptive risk scoring, the company said.
"Many of our customers have told us of the limited scope of UBA tools and the challenge of connecting multiple threat behaviors together from multiple data sources," said Matt Jones, CEO at E8 Security, in a statement about the release. "In response to this, our latest release allows that work to be done automatically, improving their insight and response times."
Cybereason
Building on a partnership it revealed last May, Cybereason, based in Boston, has teamed up with Lockheed Martin to add improved threat intelligence to its flagship Endpoint Detection and Response platform. The partnership is exclusive to Cybereason, the company said. Lockheed Martin also announced the launch of Wisdom EDR, a new endpoint security solution that brings together Cybereason endpoint detection and response capabilities with the defense contractor's threat intelligence.
Rapid7
Just before the start of the RSA event, Boston-based Rapid7 unveiled the launch of Rapid7 InsightDR, a new incident detection and response solution. InsightDR brings together behavioral analytics capabilities with contextual data collection for more informed and proactive security incident detection and reaction. It also allows companies to monitor and track endpoints, leverage machine learning, and automatically use deception and intruder traps. The launch builds on Rapid7's Insight platform.
Illusive Networks
A finalist in this year's Innovation Sandbox event, Tel Aviv-based Illusive Networks launched the latest update to its deception technology platform at the RSA event. Illusive Networks 3.0 adds Attacker View, which allows companies to visualize their network from the attacker's point of view, highlighting hidden attack vectors, vulnerabilities and privilege escalation paths.
Skyhigh Networks
On Monday, Skyhigh Networks expanded its cloud access security brokerage solution with the addition of a cloud security reference architecture. The new solution acts as a blueprint for companies looking to improve their cloud security posture or make the move to the cloud in a secure way, the Campbell, Calif.-based company said, including how best to deploy a CASB solution and integration best practices.
"As the first CASB player in the market with the most number, scale, breadth, and maturity of CASB deployments, Skyhigh continues its quest to help organizations securely adopt cloud services," Rajiv Gupta, CEO of Skyhigh Networks, said in a statement. "We hope the reference architecture helps organizations cut through the noise so they can leverage the power of cloud services using the most advanced security technologies on the market both existing and new."
Cyberbit
Cyberbit, Raanana, Israel, is breaking into the U.S. market for the first time at RSA, offering an advanced threat detection and prevention solution for SCADA networks. The company, a subsidiary of Elbit Systems, focuses on critical infrastructure markets, offering detection, analysis and response to advanced and targeted threats. Under the CyberShield Suite, Cyberbit has specific offerings for endpoint detection and response, SCADA networks, training and simulation, and incident response.
ForeScout Technologies
ForeScout Technologies said Tuesday that it had teamed up with FireEye Inc. for a strategic partnership that will allow for greater visibility, intelligence and response to advanced threats for joint customers. ForeScout, Campbell, Calif., and FireEye, Milpitas, Calif., already have a long-standing relationship, with FireEye CEO Dave DeWalt sitting on the fast-growing startup's board of directors. The companies said the partnership will expand beyond network security to also include ForeScout integrations with FireEye email, endpoint and cloud-based analytics platform.
Tenable Network Security
Tenable Network Security kicked off RSA on Monday with the launch of three new security solutions to build on its Defense in Depth model. The company, based in Columbia, Md., added a NIST Cybersecurity Framework, providing automated assessment of technical controls based on the NIST framework, threat hunting, a scanning and data collection solution, and ShadowIT, an advanced set of capabilities to prevent shadow IT.
WhiteSource
Open source risk management company WhiteSource, Woodbury, N.Y., said Tuesday that it had expanded its offering to cover open-source Android applications. The Android Application Package (APK) Analyzer provides companies that are either developing or using Android applications a way to check for open-source technologies and check for vulnerabilities.
"Our new tool represents serious progress in the struggle for better, safer mobile applications because it brings an extra layer of safety and ease of use to the huge market of Android software development," Rami Sass, CEO and co-founder, said in a statement. "With this announcement we've completely updated an outdated industry-wide business model."
Secdo
Just before the event, Tel Aviv-based Secdo unveiled a new platform geared specifically for managed security service providers. The Secdo Platform for MSSPs offers advanced alert validation, investigation and remediation in a solution that the company said would help MSSPs boost the effectiveness of their security operations centers and identify false positives from security information and event management.
The platform is valuable for solution providers that "want to offer their customers advanced services while improving the efficiency and response times of their own SOC," Shai Morag, CEO and co-founder of Secdo, said in a statement. With Secdo endpoint analytics, "MSSP SOC teams can now understand the full context of every alert, visually investigate, and reduce the time and resources needed to identify and eradicate a breach," Morag said in the statement.
CoSoSys
DLP and MDM provider CoSoSys, Friedrichshafen, Germany, on Monday revealed the launch of Endpoint Protector DLP for Linux in Private Beta. As Linux gains market share, the new solution is designed to prevent data leakage from those environments. Features of the new solution include content filtering, tracking of user data transfers, the ability to block file transfers and comprehensive reports to identify possible breaches.
Wedge Networks
Orchestrated threat management company Wedge Networks, Calgary, Alberta, unveiled Monday the addition of value-added services to its Web filtering option, building on the company's Wedge Cloud Network Defense platform.