IBM Security QRadar Incident Forensics
No one wants to think that a security breach will happen. But the reality is that the volume and variety of security attacks is rising. And today’s attackers are clever and patient, often leaving almost no evidence that they were even there. Although it’s important to take steps to prevent intrusions, if the unthinkable does happen, it’s vital to quickly find out how the event occurred, minimize its impact, and do everything you can to prevent another breach. To investigate the incident, you must search for clues to quickly get the critical, in-depth information you need to find out exactly what really happened.
IBM plans to announce IBM Security QRadar Incident Forensics, which is a new solution that can help you retrace the step-by-step occurrences of a security incident. It can help you to search, verify that an incident occurred, determine the severity, reconstruct the event, review it, determine the root cause, and take corrective and preventative action. Additionally, QRadar Incident Forensics can help show you the full extent of a breach via its data pivoting and comprehensive indexing capabilities.
With the planned IBM Security QRadar Incident Forensics, you can investigate security information and event management (SIEM) offenses more rapidly – in some cases in hours instead of days. Because it is designed to give you a clearer picture of security events, the solution can help you defend your systems against advanced persistent and insider threats. Your security teams can also benefit because the solution can help more rapidly distinguish true threats and attacks from false positives.
Read more about QRadar Incident Forensics at the Security Intelligence blog,
or talk with an IBM expert face-to-face at next week's Pulse Protect or RSA events.
IBM’s statements regarding its plans, directions, and intent are subject to change or withdrawal without notice at IBM’s sole discretion. Information regarding potential future products is intended to outline our general product direction and it should not be relied on in making a purchasing decision. The information mentioned regarding potential future products is not a commitment, promise, or legal obligation to deliver any material, code or functionality. Information about potential future products may not be incorporated into any contract. The development, release, and timing of any future features or functionality described for our products remains at our sole discretion.