Security vendor Tier-3 Huntsman has launched a threat management suite to help cybersecurity personnel prioritise data on the security of their systems.
Automated Threat Resolution Management (ATRM) collates information from across a company’s network in order to determine which of the threats are most severe, with a particular focus on the elimination of false positive alerts.
Peter Woollacott, CEO of Tier-3 Huntsman, said: "Organisations face a growing number of rapidly evolving attacks. Simply keeping abreast of every potential threat requires a security team far larger than most can support.
Quickly reducing the noise of false positives and benign occurrences to ensure that attention can be paid to real threats and incidents is vital, yet traditionally has been very difficult with solutions that just focus on detection alone."
The program works through a combination of machine learning, actuarial input and profiling of user behaviour, and is part of a growing focus in cybersecurity on the use of big data.
"With the skills shortage we have got in the cybersecurity space if you get better at detection all you do is give your security analysts more work to do," said Piers Wilson, head of product management at Tier-3.
He described the product as a tool for anticipating the questions that security analysts want to have answered when they start to investigate a threat, thus streamlining the process of separating serious threats from minor ones.
