Ziften Updates Endpoint Visibility Platform

The endpoint detection and response solution offers several features providing extended visibility, enhanced incident response, and rapid analysis.

ziften and endpoints

Ziften announced the availability of Ziften version 4.5 to deliver improved network and endpoint visibility to enterprise security teams.

The company’s continuous endpoint visibility solution is designed to reduce threat detection and mitigation time by up to 70 percent--- from 14 hours to 4 hours on average--with the ability to stop the attack from spreading.

The platform, which boasts low resource consumption and leaves a small footprint while maximizing data storage retention, can be integrated easily with customers’ existing security and network operations solutions. For example, organizations can integrate Ziften with network, systems, and security management tools, as well as the National Vulnerabilities Database (NVD), and Active Directory.

The endpoint detection and response solution offers several new features that provide extended visibility, enhanced incident response, and rapid analysis.

Among the new features are ZFlow, which offers full visibility, contextual intelligence, user behavioral analysis, and integration into previously deployed security tools, plus redesigned dashboards for more streamlined insight.

In addition, enhanced compliance monitoring tracks and reports both policy-mandated and prohibited agents and applications across the endpoint population. ZFlow also provides continuous audit confirmation to ensure that what should be running is running and what should not be running is not running.

Other features include integration with Palo Alto Networks’ WildFire, Splunk, Lancope, AlienVault’s Open Threat Exchange (OTX), ServiceNow, SolarWinds, and security information and event management (SIEM) platforms.

Rounding out the package is expanded help desk integration through SolarWinds and WebHelpDesk, which are now alert delivery options, integrating Ziften continuous endpoint monitoring with desktop service and support workflows and Windows and OS X patch level tracking.

A June study from the Ponemon Institute, sponsored by IBM and covering 350 companies spanning 11 countries, found that data breach costs are reaching record levels driven by mostly malicious attacks.

The study found that the average consolidated total cost of a data breach is $3.8 million, representing a 23 percent increase since 2013. It also revealed that the average cost incurred for each lost or stolen record containing sensitive and confidential information increased 6 percent, from a consolidated average of $145 last year to $154.

Health care emerged as the industry with the highest cost per stolen record with the average cost for organizations reaching as high as $363, while retailers have seen their average cost per stolen record jump dramatically from $105 last year to $165 in this year's study.