ThreatINSIGHT enables InfoSec teams to shift the balance of power from attackers to responders
Santa Clara, CA - July 14, 2020 – Gigamon, the company providing network visibility and analytics on all information-in-motion, today announced that it was named as a Representative Vendor in Gartner’s Market Guide for Network Detection and Response (NDR). The Market Guide for NDR, formerly known as network traffic analysis, is an overview of the market which covers vendors that security and risk management leaders should consider before investing in a solution.
Gigamon ThreatINSIGHT is a cloud-native, high-velocity NDR that was built for responders, by responders, to shift the balance of power from attackers to responders.
"Enterprises should strongly consider NDR solutions to complement signature-based tools and network sandboxes. Many Gartner clients have reported that NDR tools have detected suspicious network traffic that other perimeter security tools had missed," wrote Gartner analysts Lawrence Orans, Jeremy D'Hoinne, and John Chessman. Since its inception, Gigamon ThreatINSIGHT has focused on response as a process that includes triage, investigation, corroboration and then mitigation. The first three stages are critical to ensuring any automated actions deliver the intended result.
In the report, Gartner recognizes that “some vendors focus more on automated response (for example, sending a command to a firewall to drop suspicious traffic), whereas other vendors focus more on manual responses (for example, providing strong threat hunting tools).” The report recommends, “Enterprises should decide which approach is a better fit for them and should analyze the vendors with response features that best meet their requirements.”
ThreatINSIGHT enables InfoSec teams to reduce risk and improve resiliency in dynamic environments by providing:
- UNEQUALED VISIBILITY with comprehensive visibility (N/S/E/W + AWS/Azure/Cloud + Decrypted Traffic) and up to 30 days of enriched network metadata to enable threat hunting and full incident investigation
- HIGH-FIDELITY THREAT DETECTION with leading curated threat intelligence, machine learning and behavioral analysis and accelerated threat detection across entire MITRE ATT&CK framework
- RAPID, INFORMED RESPONSE with powerful threat hunting, full investigation and incident management workflows, evidence to make informed / complete response decisions, and integrations with leading security solutions to rapidly carry out mitigation actions
“As the global economy regains its strength and network activity increases, threat actors are lurking in the shadows, searching for ways to compromise the expanded threat attack surface. As attack frequency increases, the need for expansive, flexible and automated NDR solutions to protect the networks of tomorrow has never been higher,” said Karl Van den Bergh, Chief Marketing Officer at Gigamon. “We believe our inclusion in this Gartner Market Guide validates our ability to deliver the visibility responders need to detect threats with high confidence.”
Gigamon is offering selected network security operations teams a no-charge trial deployment and a self-drive to experience the ThreatINSIGHT advanced capabilities during this time of unprecedented change. More information and technical product specifications for the newest Gigamon ThreatINSIGHT release can be found here. ThreatINSIGHT can be deployed as a standalone solution or used in conjunction with the Gigamon Visibility and Analytics Fabric, outlined here.
To download a complimentary copy of the full 2020 Gartner Market Guide for Network Detection and Response, click here.
Source: Gartner "Market Guide for Network Detection and Response" by Lawrence Orans, Jeremy D'Hoinne, and John Chessman, June 11, 2020
Gartner does not endorse any vendor, product or service depicted in our research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
Gigamon is the first company to deliver unified network visibility and analytics on all information-in-motion, from raw packets to apps, across physical, virtual and cloud infrastructure. We aggregate, transform and analyze network traffic to solve for critical performance and security needs, including rapid threat detection and response, freeing your organization to drive digital innovation. Gigamon has been awarded over 75 technology patents and enjoys industry-leading customer satisfaction with more than 3,000 organizations, including over 80 percent of the Fortune 100. Headquartered in Silicon Valley, Gigamon operates globally. For the full story on how Gigamon can help you to run fast, stay secure and innovate, please visit www.gigamon.com