Securonix Rolls Out SNYPER, Security Analytics for Hadoop

By CIOReview | Tuesday, March 8, 2016

SAN FRANCISCO, CA: Securonix, a pioneer in the field of security analytics and predictive cyber threat detection has announced the next step in the evolution of security analytics with SNYPER; Securonix Security analytics with Hadoop. SNYPER delivers the award-winning power of Securonix analytics with the speed, scale, and affordable, long term storage of Hadoop in a single out-of-the-box solution.

Large organizations are collecting, archiving and storing massive volumes of data in repositories, without deriving security value from it. SNYPER was built with particularly one aim in sight and that was to translate billions of events from hundreds of different data sources that big organizations generate daily into accurate risk intelligence and real-time threat detection.

SNYPER assimilates petabytes of data, enriches it, and analyzes it in real-time or batch mode to deliver true predictive threat detection. This is done using advanced analytical techniques rooted in machine learning, including user and entity behavior analytics (UEBA), unsupervised classification, clustering and a powerful threat modeling engine.

“SNYPER is not only the most sophisticated threat detection capability available, it also seamlessly delivers the benefits of parallelized distributed analytics on a long-term data lake with its out-of-the-box integrated  Hadoop deployment,” said Tanuj Gulati , CTO and Co-Founder of Securonix.

Now let us focus on SNYPER and what does it mean for enterprise security? Security and network devices generate billions of events every day. Deriving value and information from this data over a period of time has been a major challenge for large enterprises. Leveraging Hadoop’s distributed processing architecture, SNYPER can perform in-line data enrichment and real-time analytics to identify advanced threats that would traditionally go unnoticed.

 Another important facet of SNYPER is SPOTTER, a blazing fast search engine that gives investigators all the required tools needed to track advanced threats persistent over a period of time.

One of the many fascinating aspects of SNYPER is the fact that all machine data ingested, analyzed and processed by SNYPER is automatically replicated across Hadoop Distributed File System (HDFS) data nodes to provide fault tolerance. There is no concept of data archiving with SNYPER. All enriched data, processed and analyzed by SNYPER is always available for analysis and investigation.

Securonics unveiled SNYPER at the product launch party on March1, 2016, the second night of 2016 RSA Conference.