Welcome!

News Feed Item

Awake Security Unveils Advanced Security Analytics Solution Proven to Make Investigators 10X More Productive

Awake Security today announced the general availability of its advanced security analytics solution, the only offering to deliver deep visibility and answers to questions that cannot even be asked today. The solution’s patent-pending Security Knowledge Graph™ data model uses machine learning and data science to automate painstaking analyses expert investigators perform. In early customer deployments with Fortune 500 security teams, Awake has improved productivity tenfold, allowing teams to detect, investigate and hunt for threats that were previously missed.

The company also announced today that it has closed more than $30 million in funding from leading venture firms Greylock Partners and Bain Capital Ventures.

Awake’s advanced security analytics provide security teams the insights needed to immediately understand the scope and impact of observed behavior and investigate only credible alerts and threats. By cutting out cumbersome tasks during the investigative process, Awake enables analysts to focus on high-value security work, speeding the detection of insider threats, corporate espionage, lateral movement and data exfiltration. By capturing the knowledge and conclusions a security team develops while doing its work, Awake lets teams get better and more effective every day; facilitates collaboration, training and evaluation; and makes security work more rewarding.

“Security tools today generate massive amounts of alerts and data, but have utterly failed to account for how useful or contextual that data is to security teams. As a result, analysts have to manually connect the dots to hunt for threats, an exhausting process for even the most experienced investigator,” said Gary Golomb, Awake’s cofounder and a world-renowned investigator. “Awake is unleashing a new model for security operations by letting analysts explore devices instead of IP addresses, people instead of packets, data instead of protocols and activities instead of sessions. This empowers the analyst to target and stop the threats that truly matter.”

A Solution to Detect, Investigate and Hunt for Threats that are Currently Missed
Developed based on research with hundreds of security professionals and more than a dozen Fortune 500 and Global 2000 SOCs, Awake uses machine learning and data science to embody the expertise of the world’s foremost investigators in a broad-based analytics solution.

"From operations to stores to ecommerce, our digital strategy is transforming our business," said Richard Noguera, CISO at Gap, Inc. and an Awake Security design partner. "And security is foundational to our strategy. We are continuously looking at the latest techniques and technologies for rapid threat detection and response. Our partnership with the Awake team has allowed us to provide our feedback while engaging with world-class investigators and security professionals to help design and build their solution - a truly refreshing approach."

The Awake hybrid SaaS architecture has two key components: the Awake Analytics Hub that resides in an organization’s on-premises or cloud environment, and the SaaS back-end hosted in the Awake cloud, which provides operational monitoring, software upgrades and intelligence updates to each Analytics Hub. Awake’s advanced security analytics rest on a proprietary set of rich parsers that capture and process data requiring no integrations other than a simple network connection.

Awake then uses a multidisciplinary approach that leverages patterns, heuristics, and machine learning to build a patent-pending Security Knowledge Graph data model that automatically identifies and tracks real-world entities such as devices, users and domains. Analysts can then interrogate this model using a human-friendly vocabulary. The Security Knowledge Graph also captures the conclusions and discoveries made by team members, improving collaboration and training while preserving otherwise undocumented tribal knowledge.

The Security Knowledge Graph enables and is enriched by EntityIQ algorithms that surface notable entities within the model and cluster similar ones. Through the wokflow-driven Awake user interface, EntityIQ can also predict the questions analysts are likely to ask, pointing them to the next investigative path quickly and effectively.

Awake’s ActivityIQ analytics correlate network traffic to entities in the data model and visualize the attack timeline as a victim would experience it and as a skilled investigator would piece it together. Awake thus eliminates the need to sift through raw data.

By offering the ability to accurately understand entities and associated activities in near-real time, Awake allows analysts to focus on high-value security work, including:

  • Network Traffic Analysis: Awake’s entity-centric view lets analysts see all network traffic, with devices fingerprinted and tracked across IP addresses. It offers insight into internet of things (IoT), BYO and other devices not discoverable with log or agent-based approaches. Watchlists created using Awake’s behavioral query language also help detect attacker activity that occurs after an initial compromise, which today often goes unnoticed.
  • Alert Investigations: Analysts can easily pivot from an alert indicator to a deep device understanding. This includes behavioral analytics about the device and analysis of similar devices for wider campaign analysis. By viewing consequential artifacts associated with the device, analysts know what questions to ask next.
  • Proactive Threat Hunting: Awake provides analysts with investigative starting points by highlighting notable entities exhibiting anomalous behavior. The rich and responsive user interface enables efficient hunting by allowing analysts to quickly filter and query the Security Knowledge Graph data model in real time, not just for indicators of compromise, but also for entity behaviors and activities.

“When it comes time for a security analyst to roll up their sleeves and dive into an incident, the flood of event information from security tools can be more distracting than helpful,” said Eric Ogren, senior security analyst at 451 Research. “The network doesn’t lie, so tapping into network data, automating the analysis and presenting it in a way that will help connect the dots in an investigation will make a significant impact in empowering analysts to more efficiently clear investigations.”

The Awake advanced security analytics solution is available immediately. For more information, please visit: http://www.awakesecurity.com.

About Awake Security
Awake Security provides the only advanced security analytics solution that delivers deep visibility and answers to questions that cannot even be asked today, improving productivity tenfold. The company’s patent-pending Security Knowledge Graph™ data model uses machine learning and data science to automate painstaking analyses expert investigators perform. It identifies and tracks network entities as humans think of them and highlights entity attributes, relationships, behaviors and activities. This enables analysts to proactively detect, hunt, investigate and respond to threats. Awake is built on a foundation of more than two years of research with hundreds of security professionals and more than a dozen security teams. The company is backed by Greylock Partners and Bain Capital Ventures and is based in Mountain View, CA. Learn more at http://www.awakesecurity.com and follow Awake on Twitter (https://twitter.com/awakesecurity), LinkedIn (https://www.linkedin.com/company/awake-security) and Facebook (https://www.facebook.com/AwakeSecurity/).

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
"Outscale was founded in 2010, is based in France, is a strategic partner to Dassault Systémes and has done quite a bit of work with divisions of Dassault," explained Jackie Funk, Digital Marketing exec at Outscale, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"I think DevOps is now a rambunctious teenager – it’s starting to get a mind of its own, wanting to get its own things but it still needs some adult supervision," explained Thomas Hooker, VP of marketing at CollabNet, in this SYS-CON.tv interview at DevOps Summit at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"We are still a relatively small software house and we are focusing on certain industries like FinTech, med tech, energy and utilities. We help our customers with their digital transformation," noted Piotr Stawinski, Founder and CEO of EARP Integration, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"We've been engaging with a lot of customers including Panasonic, we've been involved with Cisco and now we're working with the U.S. government - the Department of Homeland Security," explained Peter Jung, Chief Product Officer at Pulzze Systems, in this SYS-CON.tv interview at @ThingsExpo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"We're here to tell the world about our cloud-scale infrastructure that we have at Juniper combined with the world-class security that we put into the cloud," explained Lisa Guess, VP of Systems Engineering at Juniper Networks, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
There is a huge demand for responsive, real-time mobile and web experiences, but current architectural patterns do not easily accommodate applications that respond to events in real time. Common solutions using message queues or HTTP long-polling quickly lead to resiliency, scalability and development velocity challenges. In his session at 21st Cloud Expo, Ryland Degnan, a Senior Software Engineer on the Netflix Edge Platform team, will discuss how by leveraging a reactive stream-based protocol,...
"With Digital Experience Monitoring what used to be a simple visit to a web page has exploded into app on phones, data from social media feeds, competitive benchmarking - these are all components that are only available because of some type of digital asset," explained Leo Vasiliou, Director of Web Performance Engineering at Catchpoint Systems, in this SYS-CON.tv interview at DevOps Summit at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
Your homes and cars can be automated and self-serviced. Why can't your storage? From simply asking questions to analyze and troubleshoot your infrastructure, to provisioning storage with snapshots, recovery and replication, your wildest sci-fi dream has come true. In his session at @DevOpsSummit at 20th Cloud Expo, Dan Florea, Director of Product Management at Tintri, provided a ChatOps demo where you can talk to your storage and manage it from anywhere, through Slack and similar services with...
"We want to show that our solution is far less expensive with a much better total cost of ownership so we announced several key features. One is called geo-distributed erasure coding, another is support for KVM and we introduced a new capability called Multi-Part," explained Tim Desai, Senior Product Marketing Manager at Hitachi Data Systems, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"I'm here to leverage my secret sauce, which is using outsourced development and the company that I utilize is delaPlex Software and they've basically allowed me to win Fortune 500 companies," noted Justin Witz, CTO of FRA and PlanTools, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"We provide IoT solutions. We provide the most compatible solutions for many applications. Our solutions are industry agnostic and also protocol agnostic," explained Richard Han, Head of Sales and Marketing and Engineering at Systena America, in this SYS-CON.tv interview at @ThingsExpo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"As we've gone out into the public cloud we've seen that over time we may have lost a few things - we've lost control, we've given up cost to a certain extent, and then security, flexibility," explained Steve Conner, VP of Sales at Cloudistics,in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
"We are an IT services solution provider and we sell software to support those solutions. Our focus and key areas are around security, enterprise monitoring, and continuous delivery optimization," noted John Balsavage, President of A&I Solutions, in this SYS-CON.tv interview at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
SYS-CON Events announced today that Calligo, an innovative cloud service provider offering mid-sized companies the highest levels of data privacy and security, has been named "Bronze Sponsor" of SYS-CON's 21st International Cloud Expo ®, which will take place on Oct 31 - Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Calligo offers unparalleled application performance guarantees, commercial flexibility and a personalised support service from its globally located cloud plat...
As enterprise cloud becomes the norm, businesses and government programs must address compounded regulatory compliance related to data privacy and information protection. The most recent, Controlled Unclassified Information and the EU’s GDPR have board level implications and companies still struggle with demonstrating due diligence. Developers and DevOps leaders, as part of the pre-planning process and the associated supply chain, could benefit from updating their code libraries and design by in...