Too Much of a Bad Thing?

Security solutions are generating a volume of alerts that threaten to overwhelm IT and security professionals. We look at an example where “less is more.”

Spurred by the rise in data breaches, IT and security professionals have embraced a wide assortment of new tools designed to detect threats to their IT systems and data. Now, all of those tools seem to be yelling “Alert!” with such high frequency that security analysts simply can’t keep up. As a consequence, analysts become “detuned” to certain alerts and entire classes of alerts. This leads to security blind spots.  Observable’s Dynamic Endpoint Modeling offers a sensible alternative. 

Continue Reading

Managing Amazon Inspector for More Secure EC2 Environments

Learn more about Observable service’s integration with Amazon Inspector, a security tool for EC2 instances. Inspector produces “assessments” about the security state of EC2 instances. From the Observable web portal you can launch new assessments, schedule recurring assessments, get notified about high-severity findings, and use findings in conjunction with network flow data to help resolve alerts.

Continue Reading

Security in the Cloud – Responding to AWS Threats in Real Time

A use case example shows just how endpoint modeling improves security in AWS environments or public clouds.

In part two of our series on security in the cloud, we provide an example of how adding endpoint modeling to a company’s cloud security strategy enables an IT professional to improve security in an AWS cloud and respond to threats in real time. 

Continue Reading