Listing Thumbnail

    EMET malicious user journey for cloud apps powered by Reveal Security

     Info
    EMET malicious user journey analytics powered by Reveal Security is a leading security analytics tool that uses user journey analytics to detect threats and fraud at the application layer. It provides enriched context for anomaly detection and enables better accuracy based on journeys, as opposed to outcomes. This results in higher quality alerts that help security analysts reduce wasted time on false positives. This Edition supports MS365, Salesforce, OKTA, AWS, AZURE, Dynamics 365 (other SaaS applications are to be discussed separately)
    Listing Thumbnail

    EMET malicious user journey for cloud apps powered by Reveal Security

     Info

    Overview

    EMET malicious user journey analytics powered by Reveal Security is a leading security analytics tool that uses user journey analytics to detect malicious activity for Cloud Apps.

    The supported cloud apps are MS365, Salesforce, OKTA, AWS, AZURE, and Dynamics 365 (other SaaS applications are to be discussed separately).

    The solution provides the following benefits:

    • User Journey Analytics: User Journey Analytics is based on the analysis of activity sequences performed while using an application, in contrast with UEBA, which analyzes each activity individually and then builds a timeline. The sequence provides enriched context for anomaly detection and enables better accuracy based on journeys, as opposed to outcomes. Higher quality alerts mean security analysts reduce wasted time on false positives and alert for cases other products fail to notice.
    • Multiple Journey Profiles per User: Leveraging RevealSecurity's patented clustering engine - tailored for clustering user journeys - TrackerIQ automatically learns multiple journey profiles across applications. Detecting anomalous journeys by comparing users to themselves and their peers provides an extremely high signal-to-noise ratio.
    • Application Layer Detection and Response: TrackerIQ complements XDR solutions at the business application layer to detect threats and fraud. Existing detection solutions are focused on the infrastructure layers and on access to business applications, resulting in very limited effectiveness against malicious insiders as well as external attackers who succeed to bypass authentication mechanisms.
    • Application Agnostic Detection: The detection model is applied to any SaaS or custom-built application, analyzing user journeys in and across applications to detect anomalies. This model eliminates the need to understand business application logic and no rules are required.

    For Splunk customers, TrackerIQ connects natively to Splunk, offering simpler, streamlined deployment. EMET's Splunk experts will assist Splunk customers to configure and connect their Splunk and TrackerIQ deployments for an easy deployment experience. The product pricing includes up to 1 million log records processed per month. For more than 1 million log records processed per month, please ask for a private pricing proposal.

    Highlights

    • Application User Journey Analytics - User Journey Analytics is based on the analysis of activity sequences performed while using an application, in contrast with UEBA, which analyzes each activity on its own and then builds a timeline. The sequence provides enriched context for anomaly detection and enables better accuracy based on journeys, as opposed to outcomes. Higher quality alerts means security analysts reduce wasted time on false positives and alert on previously undetected cases.
    • Multiple Journey Profiles per User - Leveraging RevealSecurity's patented clustering engine - tailored for clustering user journeys - TrackerIQ automatically learns multiple journey profiles per user across applications. Detecting anomalous journeys by comparing users to themselves and their peers provides an extremely high signal-to-noise ratio.
    • Application Layer Detection and Response - TrackerIQ complements XDR solutions at the business application layer to detect threats and fraud. Existing detection solutions are focused on the infrastructure layers and on access to business applications, resulting in very limited effectiveness against malicious insiders as well as external attackers who succeed to bypass authentication mechanisms.

    Details

    Delivery method

    Delivery option
    64-bit (x86) Amazon Machine Image (AMI)

    Latest version

    Operating system
    AmazonLinux 2

    Features and programs

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases

    Pricing

    EMET malicious user journey for cloud apps powered by Reveal Security

     Info
    Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time. Alternatively, you can pay upfront for a contract, which typically covering your anticipated usage for the contract duration. Any usage beyond contract will incur additional usage-based costs.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.

    Usage costs (5)

     Info
    Instance type
    Product cost/hour
    EC2 cost/hour
    Total/hour
    t2.xlarge
    $120.00
    $0.202
    $120.202
    m5.xlarge
    $120.00
    $0.214
    $120.214
    m5.2xlarge
    $120.00
    $0.428
    $120.428
    m5.4xlarge
    Recommended
    $120.00
    $0.856
    $120.856
    c4.2xlarge
    $120.00
    $0.453
    $120.453

    Additional AWS infrastructure costs

    Type
    Cost
    EBS General Purpose SSD (gp3) volumes
    $0.088/per GB/month of provisioned storage

    Vendor refund policy

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    64-bit (x86) Amazon Machine Image (AMI)

    Amazon Machine Image (AMI)

    An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.

    Support

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Similar products

    Customer reviews

    Ratings and reviews

     Info
    0 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    0%
    0%
    0%
    0%
    0%
    0 AWS reviews
    No customer reviews yet
    Be the first to write a review for this product.