SANS Institute Reveals that Automated Threat Detection Helps Fulfill Protection Goals of Critical Security Controls

December 7, 2015

Vectra® Networks, the leader in real-time detection of in-progress cyber-attacks, today with the SANS Institute, announced that recent findings by SANS reveal that automated network threat detection using data science, machine learning and behavioral analysis can complement or improve traditional security methods to fulfill goals defined within the Critical Security Controls (CSCs).

“Automated threat detection is making inroads to identify new patterns, detect events that may not match a specific signature, and determine behavioral abnormalities,” wrote Barbara Filkins, senior SANS analyst, in the white paper, “The Expanding Role of Data Analytics in Threat Detection.”

The CSCs were developed through federal and community efforts, coordinated by the SANS Institute and are maintained by the Center for Internet Security (CIS). Designed to mitigate modern attack profiles, they provide recommended actions for cyber defense to stop today’s most pervasive and dangerous attacks. A principle benefit of the CSCs is their prioritization and focus on a small number of actions that offer high payoff results.

“The Critical Security Controls enable organizations to develop a best-in-class security strategy and architecture,” said Sean O’Connor, assistant chief information officer at Worcester Polytechnic Institute. “It is good to see innovative solution providers like Vectra collaborate with SANS to enable security architects to integrate their technology.”

“The Critical Security Controls enable organizations to ensure they implement essential hygiene to manage risks,” said Jane Lute, CEO of the Center for Internet Security. “What I like about Vectra is that it has the ability to sit within the network and look for anomalous behavior – not just dependent on what it’s seen before but looking at how the network is operating, recognize it in real time, and allow mitigation to proceed in real time.”

The SANS white paper, titled “The Expanding Role of Data Analytics in Threat Detection,” is available for download at

The Vectra automated threat management software delivers real-time detection and analysis of active network breaches. Vectra uses a patent-pending combination of data science, machine learning and behavioral analysis to detect malicious behavior inside networks. Its technology picks up where perimeter security leaves off by providing deep, continuous analysis of both internal and Internet-bound network traffic to automatically detect all phases of a breach as attackers attempt to spy, spread, and steal within a network.

About SANS

The SANS Institute was established in 1989 as a cooperative research and education organization. Renowned SANS instructors teach over 50 different courses at more than 200 live cyber security training events as well as online. GIAC, an affiliate of the SANS Institute, validates employee qualifications via 27 hands-on, technical certifications in information security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers master’s degrees in cyber security. For more information, visit

About Vectra Networks

Vectra® Networks is the leader in real-time detection of in-progress cyber attacks. The company’s automated threat-management solution continuously monitors internal network traffic to pinpoint cyber attacks as they happen. It then automatically correlates threats against hosts that are under attack and provides unique context about what attackers are doing so organizations can quickly prevent or mitigate loss. Vectra prioritizes attacks that pose the greatest business risk, enabling organizations to make rapid decisions on where to focus time and resources. In 2015, Gartner named Vectra a Cool Vendor in Security Intelligence for addressing the challenges of post-breach threat detection. The American Business Awards also selected Vectra as the Gold Award winner for Tech Startup of 2015. Vectra’s investors include Khosla Ventures, Accel Partners, IA Ventures and AME Cloud Ventures. The company’s headquarters are in San Jose, Calif., and it has European operations in Zurich. More information can be found at


Vectra and the Vectra Networks logo are registered trademarks and Security that thinks, the Vectra Threat Labs, and the Threat Certainty Index are trademarks of Vectra Networks. Other brand, product and service names are trademarks, registered trademarks or service marks of their respective holders.

Most recent news releases

Vectra AI and SANS Institute to Host “Think Like a Hybrid Attacker” Solutions Forum 2023

September 19, 2023
Read news release

Vectra AI Platform Now Available for Purchase on the CrowdStrike Marketplace

September 18, 2023
Read news release

Curtiss-Wright Collaborates with Vectra AI to Bring AI/ML Threat Detection to NatSec Cyber Tactical Edge Communications

September 12, 2023
Read news release

Learn more about the Vectra platform

Understand more about the Vectra platform and its approach to threat detection and response.