Chronicle integration: Conduct faster, context-driven investigations into active cyberattacks with Vectra and Chronicle

Chronicle integration: Conduct faster, context-driven investigations into active cyberattacks with Vectra and Chronicle

Chronicle integration: Conduct faster, context-driven investigations into active cyberattacks with Vectra and Chronicle

By:
投稿者:
Vectra
November 19, 2019

Cyberattackers with sophisticated hacking tools or the right stolen password can easily circumvent network perimeter security to spy, spread and steal assets inside networks.

This gap leaves security teams saddled with manual, time-consuming threat investigations and costly forensic analysis, often after damage is done.

The Cognito threat detection and response platform from Vectra now seamlessly integrates AI-based threat hunting and incident response of Chronicle Backstory, a global security telemetry platform, for increased context during investigations and hunts and greater operational intelligence.

The integration pulls the Cognito metadata-enriched detections directly into the Chronicle Backstory dashboard. Now, organizations can incorporate high-value detections from Cognito into their existing workflows and automate correlation in the Backstory security telemetry, providing greater context to threats and attacks.

The new integration with Cognito and Chronicle Backstory easily connects and correlates Vectra’s findings with other third-party solutions, pulling in additional context for the security team. Chronicle also captures, indexes and correlates Cognito threat detections in real time, making them available in a searchable repository so security teams can generate graphs, reports, alerts, dashboards and visualizations.

Learn more about the Vectra and Chronicle partnership in the solution brief.

About the author

Vectra

Vectra® is the world leader in AI-powered network detection and response.

Author profile and blog posts

Most recent blog posts from the same author

Threat detection

How to Track Attackers as They Move to Your Network from the Cloud

December 8, 2020
Read blog post
Security operations

Expertise That Unlocks the Potential within Your Security Operations

July 21, 2020
Read blog post
Industry

A Tale of Two Attacks: Shining a Security Spotlight on Microsoft Office 365

October 26, 2020
Read blog post