Eyeglass Solutions Publication2
Vecta AI and Superna
Home
Vectra AI and Superna: Safeguard your data with an integrated and automated approach to security
Key Challenges
Having a large portfolio of security technologies is the norm for today’s cybersecurity space. With the adoption of more and more hybrid environments, maintaining a cohesive security program continues to be a challenge that many organizations face, especially when it comes to detecting threats and responding to them with confidence and speed. Vectra AI and Superna’s technical integration seamlessly bridges the gap between detection and response with automation playbooks and critical AI technologies.
Solution Overview
Combining Network security and Cyber Storage security with automation allows customers to execute automated playbooks that provide SOC teams with the tools they need to protect corporate data. The combination of network and
storage playbooks provides a host to storage automation solution that simplifies data protection. SOC administrators that leverage a SOAR platform for automation will be able to combine the early detection capabilities of Vecta AI and the proactive data protection capabilities of Superna.
Solution Components:
- Automation playbooks
- Network and storage playbooks
- Real-time analytics
- Historic forensics
- Vectra AI Attack Signal Intelligence
- Superna Zero Trust
Key Benefits:
- Rapid, confident, and automatic response to threats
- AI-driven threat prioritization
- Mitigation before attack fully occurs, avoiding a costly recovery
- Real-time auditing and historical forensics for
- effective remediation
Vectra AI uses advanced artificial intelligence to identify and prioritize suspicious activity early in the attack progression before any
damage is inflicted. When individual threats or attack profiles target data, Vectra AI notifies Superna through automation playbooks,
so that critical data can be immediately placed into a protective, immutable state and lockout the compromised user account without
impacting production data access for other users. Thus, securing the data and isolating the user’s data access and preventing the need
for costly recovery.
Additionally, Superna delivers its real-time analytics and historical forensics at the data layer, understanding when a nefarious activity
timeline is critical to root cause and remediation. This advanced, real-time auditing and historical view of data activity helps secure and
provide forensics to assist in root cause and impact radius of a compromised IT environment.
© Superna Inc
For samples playbooks to implement automation between Vectra AI and Superna Zero Trust, please visit Vectra AI’s XSOAR GitHub
repository.
- Vectra AI – Superna Critical Data Protection PlayBook
- You can run this playbook for any incident where data security is at risk and an immutable snapshot is needed to protect critical data. The snapshot can be used to recover data, and Cyber Storage analytics from Security Edition can detect malicious data activity and log file access. This is necessary to investigate the root cause of what data was affected by the malicious user or host.
- User Request Storage Lockout Playbook
- Accepts an input question to accept the userID that should be locked out of storage. This playbook can be run by any SecOps workflow where the threat to data has increased and a proactive step to ensure no data can be destroyed.