In the ever-evolving realm of cybersecurity , NetWitness ’ evolution is nothing short of a technological odyssey . Launched in 1997 as a covert US Intelligence Agency research project , NetWitness was ingeniously designed to unravel the complexities of vast network data . Today , NetWitness has a reputation as one of the most powerful detection and forensic platforms in the industry , armed with the prowess to gather data from myriad sources .

Massimo Vulpiani , NetWitness ’ EMEA Business Leader

Massimo Vulpiani , NetWitness ’ EMEA Business Leader , and Karim Abillama , SE Director , International Business at NetWitness , sit down for an exclusive interview with Intelligent CISO to discuss some of the company ’ s latest innovations and how its platform offers visibility to analysts , combining its analytical capabilities and contextual insights to equip security teams to combat advanced threats swiftly and decisively .

NetWitness ’ journey began in 1997 as a pioneering US Intelligence Agency research project managed by CTX Corporation . The solution was custom-built to help analysts understand large volumes of captured network data , but CTX saw the value of the technology across broad use cases and obtained permission to explore it in other engagements .

Since then , the tool has been developed and today is a comprehensive threat detection and response platform that is able to collect information from multiple sources , provide visibility to analysts and , with the introduction of analytics capabilities and contextual information , allow security teams to act properly and quickly in the phase of advanced threats .

How do you provide security teams with the unrivalled visibility they need to detect sophisticated threats in complex IT infrastructures ?

As a Threat Detection , Investigation and Response Platform , NetWitness collects data from multiple sources and helps organisations to detect and respond to threats in real time . This data is consolidated from multiple sources like network traffic , user behaviourbased analytics , logs and user activity to identify anomalies that may indicate a security incident .

This could include network data which encompasses incoming security information originating from endpoints or the OT environment . This information may also encompass threat intelligence or business data which is often regarded as an organisation ’ s most vital asset .

These elements collectively empower an organisation ’ s security team to make informed decisions and respond swiftly to mitigate security risks , reducing the potential impact of security breaches . This enables organisations to sustain and evolve while maintaining heightened security and delivering new business services at an advanced level .

How does NetWitness achieve faster and more advanced threat detection compared to other platforms and how does it help in exposing the full scope of attacks ?

In today ’ s business landscape , speed is of paramount importance . Strengthening defences minimises the time attackers have to carry out their intentions . This www . intelligentciso . com

51