6. Many tools are using big data and cloud-based analytics to track actual network behavior. One of the reasons why sensors and agents are so compact is that most of the heavy lifting happens in the cloud, where they can bring to bear big data techniques and data visualization to identify and block a potential attack. SentinelOne and Outlier Security use these techniques to correlate data across your network in real time.
7. Attack reporting standards like CEF, STIX, and OpenIOC are also being integrated into today’s endpoint products. SentinelOne is an example.This is a welcome development and hopefully more products will move in this direction.
Sign up for CIO Asia eNewsletters.