• Company
• Overview
• Management Team
• Advisors
• Investors

• Solutions
• Threat Analysis Console (TAC)
• Architecture

• Services
• Integration
• Training

• Partners
• Overview
• Channel
• Technology
• Industry

• News
• In the News
• Press Releases

• Contacts
• Key Contacts
• Directions
• Careers

SOLUTIONS:

Threat Analysis Console (TAC)

[click to enlarge]

RazorThreat develops threat information and risk management software that protects intellectual capital and personally identifiable information from the inevitable cyber attack. Today’s customized, targeted, financially motivated cyber attacks cannot be stopped by your existing firewalls, intrusion detection, intrusion prevention and SEIM software.

[click to enlarge]

Unlike all of the systems on the market today that can only stop threats that they know or learn about RazorThreat provides a Higher Order Analysis on all of the communication passing through existing security equipment preempting the zero-day threats that they miss.

RazorThreat’s Threat Analysis Console (TAC) enables an organization to analyze all of the logs generated by their existing security and network equipment and vulnerability information to find threats that have gone undetected by existing perimeter and point solutions providing a Higher Order Analysis of the health of their digital assets (i.e. intellectual capital, personally identifiable information, and trade secrets).

RazorThreat’s TAC is comprised of three engines which together provide organizations the ability to identify and remediate internal and external communication violations and analyze quantifiable risk on a port by port basis for all threats and vulnerabilities to the enterprise network, delivering a comprehensive enterprise-wide Risk Index™.

The TAC’s Inter-domain Communication Engine (ICE) normalizes data from numerous disparate network and security systems correlating it against the enterprises security policy domains identifying inter-domain communication violations. ICE remediate’s these unauthorized inter-domain communication violations to assure trusted communication within and outside of the enterprise.

The TAC’s Threat Intelligence Engine (TIE) correlates data from numerous disparate network and security systems into valuable actionable information enabling organizations to minimize the probability that a threat against a known vulnerability will result in a negative impact. TIE compares this threat data against global threat data producing a personalized Threat Index. This allows the organization to be proactive verses reactive, thus identifying and mitigating threats before they can have any adverse effect.

The TAC’s Risk Intelligence Engine (RIE) correlates vulnerability data from industry standard scanners with threat intelligence data to provide a true risk map for the organization. This risk picture is represented in graphical format and provides prioritization for high level risk when a correlated threat to a vulnerability exists. This allows an organization to quickly address threats that pose the highest level of risk. RIE also provides a policy simulator that allows for the modeling of current or planned policies and provides a proactive means of evaluating risk propagation based upon policy configurations.

RazorThreat’s TAC includes patent pending technology including specific methods for source address identification, unique address identification and inter-domain communication management via security policy domain definitions. This patent pending technology is the engine that enables RazorThreat to quickly and accurately process large amounts of network communication information and determines the effectiveness of defined security policies on real world performance.

Features of the TAC include:

Security Dashboard

A single, simple to view and understand graphical representation of your enterprise wide security threats and policy violations.

Manager of Managers

A true threat management system must possess all of the capabilities of today’s security management solutions. An integrated threat management system must be able to receive information from all the various security systems in the enterprise, correlate and interrupt that information into actionable intelligence and provide a tool for easily managing all the various security solutions.

RazorThreat’s Threat Analysis Console (TAC) provides the industry’s first true security threat management system. The TAC allows a security analyst the ability to utilize a single interface to collect, correlate, interrogate, analyze and mitigate using the information available within the security framework they deployed.  

From the TAC dashboard, a security analyst can launch the management interface of any of their various security solutions including firewalls, IDS/IPS units, scanners, event correlation and security information and event management (SIEM) solutions.

While analyzing data, it may be necessary to refer back to the original log to view payload data or look for specific detail not included in the correlated information.  With the click of a mouse the element manager of choice can be launched within the TAC pulling into it the exact points of interest without hours of tedious searching.

Analyst Tool Kit

Identifies rogue addresses and provides the capability to trace them back to their source to determine who owns the addresses. The took kit also provides the ability to perform various abuse lookups enabling full drill down capability to the port and protocol level enabling rapid determination of risk associated with any communication.

Threat Index

RazorThreat provides a unique Threat Index for your organization. This Threat Index rates your organization against globally normalized threat data. The value of being able to finally measure your unique threat index provides substantial value for strategic planning and budgeting.

Web Based Policy Editor

Quickly define and program your explicit enterprise security policy into RazorThreat’s TAC. This web based interface provides a simple, easy to use graphical means to program and tune the TAC.

Regulatory and Compliance Reporting

Very few organizations can provide auditors with a complete and explicit security policy definition. No organization today can provide the auditor with the output to prove that no unauthorized communications or access occurred between the policy domains. RazorThreat clients have the ability to provide both the explicit security policy document and the follow up detail to prove that the existing security point solutions and processes have been effective.

TESTIMONIALS

“In very short order RazorThreat's TAC was able to process and identify threats to our network that were missed by our existing security point solutions and went undetected by our vulnerability assessment scans.  RazorThreat gives me the piece of mind that we are able to identify and stop unknown threats to our network.”
~ Ken Rogers, Executive Director � Automation Alley

Product Overview

White Paper