Nexthink extends HP’s SIEM platform with End-user IT Analytics from Endpoint Devices
Lausanne – Nexthink®, a pioneer and leader in end-user IT Operations Analytics (ITOA), today announced that it has received HP ArcSight Common Event Format (CEF) certification. The interoperability between Nexthink and HP ArcSight enables customers to improve security compliance, endpoint threat detection (ETD) and security event management. Nexthink complements HP ArcSight Enterprise Security Management (ESM) and HP ArcSight User Behavior Analytics (UBA) by providing additional end-user analytics obtained from endpoint devices.
Nexthink provides continuous real-time analytics and visibility from the perspective of the end-user. All endpoint application usage, network and web connections, bandwidth usage, error messages and crashes, as well as potential security threats and IT service quality issues are recorded, analyzed and visualized in real-time. Nexthink maintains a historical record that serves as a highlight reel or movie that can be used to go back in time and investigate the source and movement of attacks.
HP ArcSight is a comprehensive Security Information and Event Management (SIEM) solution that enables cost-effective compliance and advanced security analytics to identify threats and manage risk. Nexthink’s analytics helps HP ArcSight users quickly identify and understand endpoint related security compliance issues, targeted attacks and advanced threats. With Nexthink, HP ArcSight can correlate end-user analytics-based alerts with other security events. Analytics-based alerts help reduce the manual human analytics effort and provide real-time contextual awareness needed for attack lifecycle and kill chain methodologies.
Nexthink requires no configuration and is able to both detect malware and premature events that bypass today’s endpoint security products and to uncover threats and indicators of compromise that would otherwise go undetected. Nexthink’s unique topological analytics and award-winning visualizations allow security teams to more easily investigate the source and movement of attacks.
“Nexthink adds endpoint device intelligence to the HP ArcSight platform,” said Poul Nielsen, CMO at Nexthink. “Our unique value is that Nexthink’s analytics are the result of continuous real-time monitoring of the kernel on endpoint devices, which industry analysts indicate is the weakest link in IT security.”
Nexthink is the innovator of End-user Analytics for IT security, operations and projects. Our software uniquely provides continuous, real-time analytics covering all endpoints, users, applications and network connections and visualizations of IT infrastructure, service delivery and quality. Nexthink helps IT departments connect, communicate and collaborate to achieve their major goals and to optimize endpoint security, operations, support and workplace transformation projects. Nexthink’s real-time analytics and visualization extend help desk, server monitoring, APM (application performance management) and Client Management tools and provides essential visibility for IT governance.
Nexthink serves the Global 5000 utilizing a leveraged partner model. Nexthink is a private company headquartered in Lausanne, Switzerland.
Nexthink® is a registered trademark of Nexthink S.A. To learn more, visit https://www.nexthink.com.