TRITON RiskVision
GAIN VISIBILITY INTO NEXT GENERATION ADVANCED THREATS AND DATA THEFT
Defending against today’s cyber threats requires enhanced scope and scalability to fully understand the effectiveness of current defenses. Forcepoint™ TRITON® RiskVision™ is a network monitoring appliance that provides unparalleled visibility into advanced threats, highlighting infected systems, call home communications, blended attacks and data exfiltration. TRITON RiskVision uncovers advanced threats via sandboxing and many other real-time techniques, delivering actionable data in ready-to-use dashboards and reports.
WHY TRITON RISKVISION?
TRITON RiskVision combines real-time advanced threat defenses,global security intelligence, file sandboxing and data loss/data theft detection into a single appliance that’s easily deployed via a network TAP or SPAN port. TRITON RiskVision provides immediate visibility into advanced threats, data exfiltration and infected systems.
REAL-TIME DEFENSES, GLOBAL THREAT AWARENESS, SANDBOXING AND DLP
TRITON RiskVision unifies four key defenses into one platform:
- Forcepoint ACE uses seven defense assessment areas with over10,000 analytics to provide real-time threat analysis of web andemail traffic.
- Forcepoint ThreatSeeker® Intelligence Cloud unites over 900 million endpoints and analyzes 3-5 billion requests per day, providing global threat awareness and vital defense analytics to ACE.
- Forcepoint Threat Protection Cloud & Appliance analyze behavior of web downloads and email attachments to uncover advanced threats and communications and provides actionable forensic reporting.
- Data loss prevention (DLP) detects data exfiltration for registered data, criminal-encrypted uploads and password file data theft.
FILE SANDBOXING & FORENSICS
- Integrated web download and email attachment file sandboxing forbehavioral analysis and forensic reporting with actionable insights.
CLOUD APPLICATION VISIBILITY POWERED BY SKYFENCE
- Identify critical data threats from “shadow IT” by uncovering high riskcloud application usage and those users putting your data at risk.
- Identify safer alternative cloud applications.
INTEGRATED DLP DEFENSES
- Content and context aware DLP detects data exfiltration related to theft or loss.
- Data theft features include detection of data loss via outbound email and web communication, including webmail and cloud app usage.
ADVANCED THREAT & DATA THEFT DETECTION
- ACE real-time defenses for advanced threat and data theft detection.
- More than 10,000 analytics enable defenses against undetected threats.
GLOBAL THREAT AWARENESS
- Security intelligence from the ThreatSeeker Intelligence Cloud.
- Analyzes up to 5 billon web, email and social networking requests per day.
YARA ANALYSIS
- Plugin for matching YARA rules within each transaction to find evidenceof malware.
- Downloadable YARA rules.
THE FORCEPOINT DIFFERENCE - ACE
Forcepoint ACE provides real-time, inline contextual defenses for Web, Email, Data and Mobile security by using composite risk scoring and predictive analytics to deliver the most effective security available.
It also provides containment by analyzing inbound and outbound traffic with data-aware defenses for industry-leading data theft protection.
Classifiers for real-time security, data and content analysis — the result of years of research and development — enable ACE to detect more threats than traditional anti-virus engines every day (the proof is updated daily at http://securitylabs.forcepoint.com). ACE is the primary defense behind all Forcepoint TRITON® solutions and is supported by the Forcepoint ThreatSeeker® Intelligence Cloud.