Cyphort Introduces ‘Anti-SIEM’ Security Analytics Platform

anti-siemDespite being the fastest growing security software segment in the world, SIEM is under attack. Security pros (and vendors) have been saying SIEM is dead since way back in 2011. However, those sentiments usually amounted to little more than wishful thinking. But now, a real threat to the SIEM throne has risen, as new technologies such as big data security analytics and UEBA set their sights on the SIEM piece of the cybersecurity market.

This week, security analytics firm Cyphort Inc. took the rising anti-SIEM sentiment to a whole new level when it revealed a new security analytics platform named—wait for it— the Anti-SIEM.

 The new software solution builds on Cyphort’s background in advanced threat detection and adds a scalable analytics engine that ingests, analyzes, and correlates data from Cyphort collectors and other security tools deployed in the network. Consolidated results are then  presented, along with identity information, as an adjustable timeline view of the complete security incident.

“The Anti-SIEM is the result of extensive research that Cyphort conducted with nearly 1,000 SIEM users from large organizations across the US,” said Manoj Leelanivas, CEO and president at Cyphort. “We’ve used these insights to create the Anti-SIEM. It’s everything users want in a SIEM — and less. Meaning, less cost, noise, complexity, and wasted time.”

The Anti-SIEM is a distributed software platform that begins with a focus on threat detection, by ingesting raw data from web, email, and lateral spread traffic, as well as log and event data from a variety of other security tools in the network. All information is fed into its analytics engine, which uses machine learning and behavioral analysis technologies to first identify advanced threats, then correlate all related alerts and log events from other sources, and finally add user/host identify information. The Anti-SIEM then presents analysts with a consolidated timeline view of the entire security incident, showing the threat and all related events over time, as well as progression through the cyber kill chain. The entire process takes as little as 15 seconds, according to the company.

Jeff Edwards
Follow Jeff

Jeff Edwards

Jeff Edwards is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large.He holds a Bachelor of Arts Degree in Journalism from the University of Massachusetts Amherst, and previously worked as a reporter covering Boston City Hall.
Jeff Edwards
Follow Jeff

3 thoughts on “Cyphort Introduces ‘Anti-SIEM’ Security Analytics Platform”

  1. Fengmin Gong says:

    That does have the making of an effective threat monitoring and incident resolution tool. Great job!

  2. Andy Krafft says:

    “All information is fed into its analytics engine which . . . then presents analysts with a consolidated timeline view of the entire security incident”. All good SIEMs do this so not sure why it’s an Anti-SIEM!

    1. Franklyn Jones says:

      Andy, compare the time, cost, complexity of achieving that with a traditional SIEM. Doable? Yes? Easy? Not so much. This product is as close to plug-and-play as you can get. Time-to-value is typically same day, versus weeks or months.

Leave a Reply

Your email address will not be published. Required fields are marked *