Alert

Cisco Stealthwatch Cloud | Public Cloud Monitoring - Metered

Public Cloud Monitoring is an AWS Native Security Visibility Service, provides security monitoring and visualization services for AWS infrastructure using advanced modeling and machine learning techniques. Our service learns normal behavior for a resource or a user. When a behavior change is observed that should be investigated, Stealthwatch Cloud will generate an alert with various details.The service consumes VPC flow logs and models all IP traffic generated by your resources, both inside the VPC and to external IP addresses. New Remote Access, Geographic Unusual Remote Access, Excessive... Read more


    Customer Rating

    (2 Customer Reviews)
    2 reviews
    5 star:

    (2)
    4 star:

    (0)
    3 star:

    (0)
    2 star:

    (0)
    1 star:

    (0)

    Delivery Method

    Software as a Service (SaaS) Subscriptions (Read more)



    Highlights

    • Automated monitoring and visibility. Stealthwatch Cloud provides visibility to every AWS asset and user. Machine learning and modeling algorithms lead to a deeper understanding of normal activity while providing automatic threat detection.
    • Easy to use. Leveraging embedded AWS tools like VPC Flow Logs, Inspector, Config, and Cloud Trail Stealthwatch Cloud requires little setup. There are no agents to install, AMIs to deploy or rules to write. Free 60 day trial period.
    • Extremely Low noise. Stealthwatch Cloud's unique dynamic learning of your asset's behavior means that only meaningful alerts are generated. Customers have historically rated 90% + of Stealthwatch Cloud's alerts as "helpful".

    Product Description

    Public Cloud Monitoring is an AWS Native Security Visibility Service, provides security monitoring and visualization services for AWS infrastructure using advanced modeling and machine learning techniques. Our service learns normal behavior for a resource or a user. When a behavior change is observed that should be investigated, Stealthwatch Cloud will generate an alert with various details.

    The service consumes VPC flow logs and models all IP traffic generated by your resources, both inside the VPC and to external IP addresses. New Remote Access, Geographic Unusual Remote Access, Excessive Access Attempts and Potential Database Exfiltration are examples of Stealthwatch Cloud alerts. In addition, network reports like top IPs, top ports, active subnets with traffic statistics, etc, are available.

    The service is also integrated with additional AWS log sources like Cloud Trail, Cloud Watch, Config, Inspector, IAM, Lambda, etc. Abnormal User, Geographically Unusual AWS API Usage, Permissive AWS Security Group activity, and Inspector Findings are examples of alerts produced from these other AWS sources.

    The monthly fee is based on the amount of VPC Flow Log information that is sent and processed. The billable metric is referred to as EMFs (Effective Mega Flows) and equates to roughly one million lines of processed log data. During the trial process, we will review your flow log volume (EMFs) with you so you will understand the costs, support is included.

    Product Details

    • Available on AWS Marketplace Since: 09/19/2017

    Resources

    Support Details

    Cisco Stealthwatch Cloud | Public Cloud Monitoring - Metered

    Cisco Stealthwatch Cloud Support
    When customers order Cisco Stealthwatch Cloud, the support is embedded as part of the subscription. No additional support fees are required. For questions, email swatchc-support@cisco.com

    If you have any questions, please contact Stealthwatch Cloud's support team at email swatchc-support@cisco.com or (314) 899-9284.

    AWS Infrastructure

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services. Learn more

    Refund Policy

    We offer a free 60 day trial of the full product with support. See Cisco Stealthwatch Cloud's website for additional details.

    End User License Agreement

    By subscribing to this product you agree to terms and conditions outlined in the product End User License Agreement (EULA).

    Continue

    You will have an opportunity to review your order before subscribing or being charged.

    Pricing Details

    Software Fees

    Additional taxes may apply.

    Units Cost
    Free 60 day trial w/no per month EMF cap $0.00 / unit
    First 1 to 99 Units (EMF) $6.00 / unit
    Additional 100 to 499 Units (EMF) $4.80 / unit
    Additional 500 to 999 Units (EMF) $4.00 / unit
    Additional 1000 to 4999 Units (EMF) $3.00 / unit
    Additional 5000 to 9999 Units (EMF) $2.50 / unit
    Additional 10000 to 24999 Units (EMF) $2.10 / unit
    Units above 25000 and Above (EMF) $2.00 / unit
    Note: This software is priced along a consumption dimension. Your bill will be determined by the number of units you use.

    Recent Product Reviews

    06/30/2017

    The best solution for network monitoring in the cloud

    This is the best solution I have found for network intrusion detection in the cloud. It doesn't require...

    Read more

    01/22/2016

    Great Technology, Even Better Support!

    I was looking for a better way to monitor network security on AWS. Observable gives us much better visibility...

    Read more

    Create Your Own Review