Foundation | Analytics | Resolutions | |
---|---|---|---|
Data and Visibility | |||
Base Platform: Multitenancy, RBAC, SSO | |||
Google Chronicle licenses from Netenrich | |||
Data ingestion: Cloud, Hybrid, On-prem | |||
Pre-loaded/configurable detection rules, rule packs, parsers | |||
3rd-Party threat intel feed ingestion | |||
MITRE security controls gap analysis | |||
Netenrich curated threat intel feeds | |||
Knowledge Now global attack surface intelligence | |||
Signal Browser: Detection alert listing | |||
Dashboards & Reports: Pre-defined, DIY no code | |||
Guided DIY setup | |||
Cloud asset intelligence (GCP, AWS, Azure) | |||
Notification engine for email & webhook (ChatOps) | |||
Customer success manager (CSM) | |||
Customer support | |||
Analytics and Situational Awareness | |||
AIOps | |||
Anomaly detection (UEBA) | |||
Attack surface management | |||
Threat detection mapped to MITRE & cyber kill chain | |||
Indication of Compromise intelligence | |||
Vulnerability intelligence | |||
External threats | |||
Threat models | |||
Automation | |||
Tier 1+ SOC automation | |||
Tier 1+ NOC automation | |||
Asset Intelligence | |||
Cloud asset intelligence (GCP, AWS, Azure) | |||
Situations (Correlated Signals) | |||
Situation scoring based on likelihood, impact, confidence | |||
Situational analytics | |||
Resolution with ActOns | |||
Timelines | |||
War room for collaboration | |||
ActOn policy | |||
ActOn Integrations: ITSMs, ITOMs, SOARs |
Security and IT operations at scale and speed
Resolution Intelligence Cloud subscription plans fit wherever you are on your journey:
- Foundation — Ingest all your data without penalty. Jumpstart Google Chronicle for security data and threat detection at Google speed and scale. Foundation provides multi-level multitenancy, role-based access control (RBAC), single sign on (SSO), detection rule and parser management, rule packs, Netenrich threat intelligence, real-time dashboards and reports, and more.
- Analytics — Get situational awareness and be proactive with real-time data analytics and machine learning that reveal risky behaviors and pre-incident situations. Situations are scored by risk to the business based on impact, likelihood, confidence. Up-level staff by automating Tier 1 and Tier 2-level tasks.
- Resolutions — Resolve Situations quickly and effectively with ActOns™: correlated, related events, assets, and users. Analysts, colleagues, ops, customers, even third-party experts can collaborate with context and see what happened when. Two-way integration at the ActOn level with Google Chronicle SOAR (formerly Siemplify) and ITSMs speeds resolution and enriches existing resolution workflows.
Pricing
Pricing starts as low as $45 per covered personnel per year with a one-year contract. Contact us for more information, and visit us on Google Marketplace. Here's a printable version of pricing and plans with more details.
Transform to Autonomic Security Operations
Netenrich Resolution Intelligence Cloud™ brings risk management, data analytics, and machine intelligence to enable organizations to transform to an Autonomic Security Operations (ASO) approach.
Organizations gain complete situational awareness to better detect and prioritize patterns that indicate risk — even before critical events occur. By distilling large volumes of alert noise down to ActOns — which represent context and information about related events, assets, and users and are ranked based on impact, likelihood, and confidence — the platform pinpoints the alerts that pose the most critical risk and need immediate resolution.
Netenrich Resolution Intelligence Cloud Key Benefits
- Competitive advantage: By adopting an ASO approach sooner rather than later, you gain a competitive advantage through scaling risk management to align better with business and by reducing operational costs.
- Advanced behavioral analytics: Advanced behavioral analytics help discover, quantify, prioritize, and resolve risks across cybersecurity, digital, and development operations (DevOps).
- Predictive intelligence: Artificial intelligence (AI) engines not only quickly process events, analyze data, and detect anomalies, but their ability to continuously learn also helps prevent cyberattacks.
- Machine learning: ML models identify threats that may otherwise go missed, helping you stay ahead of threats and protect your organization from cyberattacks.
- Large language models: Training data for customizable ML models allows you to converse with data with a sub-second response.
- Intelligent SOC routing: Intelligent routing capabilities direct pressing incidents to the right people for resolution.
- Multitenant scalability: Multi-level, multi-tenant support, provides ability to scale to accommodate needs of businesses, both large and small, without imposing unnecessary financial burdens.
- SOC and threat collaboration: Enhanced collaboration features facilitate cross-organizational communication and co-ordination to speed incident resolution.
- Automation: Automation of low-level investigation tasks helps streamline processes, save time, and boost productivity.
- Unified visibility: A single pane of glass for all cybersecurity and digital operations data provides a holistic view into your environment to speed threat detection and response.
- Flexible packages and pricing: Flexible options available to meet the needs of your organization — no matter your size and where you are in your security journey — today and into the future.
Netenrich Resolution Intelligence Cloud Plans — Enterprise
Wherever you are on your ASO journey, we have a plan to meet your needs.
Netenrich Resolution Intelligence Cloud
ESSENTIALS
|
Netenrich Resolution Intelligence Cloud
STANDARD
|
Netenrich Resolution Intelligence Cloud
PREMIUM
|
||
A perfect fit for your enterprise if you are just establishing a SOC. |
A perfect fit for your enterprise if you already have a SOC but are operating it in a traditional manner. Your organization might be heavily reliant on manual processes and thus, could greatly benefit from the introduction of ML models to enhance your security operations. |
Designed for your enterprise if you have an advanced mindset towards risk and the adoption of automation and ML systems. Your organization has already embraced the power of ML but is now looking for ways to prioritize and manage risk better while optimizing your SOC operations. |
||
This plan serves as a stepping stone for you to establish a SOC and provides you with the necessary tools and support for threat detection. |
This plan serves as a stepping stone for your enterprise to transition from traditional methods to a more modern, ML- and behavioral analytics-based approach. It provides the necessary tools and support to help you navigate this transition smoothly, while enhancing your threat detection capabilities and improving your overall security posture. |
This plan offers advanced ML models and automation tools that can help your enterprise prioritize and manage risks better, detect and respond to threats faster, and achieve higher efficiency. |
Security and IT operations at scale and speed
Resolution Intelligence Cloud subscription plans fit wherever you are on your journey:
- Foundation — Ingest all your data without penalty. Jumpstart Google Chronicle for security data and threat detection at Google speed and scale. Foundation provides multi-level multitenancy, role-based access control (RBAC), single sign on (SSO), detection rule and parser management, rule packs, Netenrich threat intelligence, real-time dashboards and reports, and more.
- Analytics — Get situational awareness and be proactive with real-time data analytics and machine learning that reveal risky behaviors and pre-incident situations. Situations are scored by risk to the business based on impact, likelihood, confidence. Up-level staff by automating Tier 1 and Tier 2-level tasks.
- Resolutions — Resolve Situations quickly and effectively with ActOns™: correlated, related events, assets, and users. Analysts, colleagues, ops, customers, even third-party experts can collaborate with context and see what happened when. Two-way integration at the ActOn level with Google Chronicle SOAR (formerly Siemplify) and ITSMs speeds resolution and enriches existing resolution workflows.
Netenrich Resolution Intelligence Cloud Plans — Enterprise
Wherever you are on your ASO journey, we have a plan to meet your needs.
Netenrich Resolution Intelligence Cloud
ESSENTIALS
|
Netenrich Resolution Intelligence Cloud
STANDARD
|
Netenrich Resolution Intelligence Cloud
PREMIUM
|
||
A perfect fit for your enterprise if you are just establishing a SOC. |
A perfect fit for your enterprise if you already have a SOC but are operating it in a traditional manner. Your organization might be heavily reliant on manual processes and thus, could greatly benefit from the introduction of ML models to enhance your security operations. |
Designed for your enterprise if you have an advanced mindset towards risk and the adoption of automation and ML systems. Your organization has already embraced the power of ML but is now looking for ways to prioritize and manage risk better while optimizing your SOC operations. |
||
This plan serves as a stepping stone for you to establish a SOC and provides you with the necessary tools and support for threat detection. |
This plan serves as a stepping stone for your enterprise to transition from traditional methods to a more modern, ML- and behavioral analytics-based approach. It provides the necessary tools and support to help you navigate this transition smoothly, while enhancing your threat detection capabilities and improving your overall security posture. |
This plan offers advanced ML models and automation tools that can help your enterprise prioritize and manage risks better, detect and respond to threats faster, and achieve higher efficiency. |
Pricing
Pricing starts as low as $45 per covered personnel per year with a one-year contract. Contact us for more information, and visit us on Google Marketplace. Here's a printable version of pricing and plans with more details.
Resolution Intelligence Cloud Plans — Enterprise
Plan Features
Resolution Intelligence Cloud ESSENTIALS | Resolution Intelligence Cloud STANDARD | Resolution Intelligence Cloud PREMIUM | |
---|---|---|---|
Scope | |||
Tenants | Single tenant |
Single tenant |
Multi-tenant |
ML Models | 20 |
60 |
120 |
Domains/Sub-Domains Monitored by Attack Surface Management (ASM) | 1 domain; 5 sub-domains |
5 domains; 25 sub-domains |
Unlimited |
Custom Exposures Detections on Attack Surfaces | 10 |
25 |
100 |
Security Practitioner Role Users | 10 |
20 |
30 |
Hot Storage | 12 months |
12 months |
12 months |
Correlation Policies | Unlimited |
Unlimited |
Unlimited |
Notifications (Email, Push, Web, SMS, Phone) | Unlimited |
Unlimited |
Unlimited |
Escalation Policies | Unlimited |
Unlimited |
Unlimited |
General Role Users | Unlimited |
Unlimited |
Unlimited |
Available Add-Ons
Resolution Intelligence Cloud ESSENTIALS | Resolution Intelligence Cloud STANDARD | Resolution Intelligence Cloud PREMIUM | |
---|---|---|---|
Additional Tenants | Available |
Available |
Available |
Additional ML Models | Not available |
Available |
Available |
Additional Domains/Sub-Domains Monitored By ASM | 1 domain; 5 sub-domains |
Available |
Included |
Additional Custom Exposure Detections on Attack Surfaces | Not available |
Available |
Available |
Additional Security Practitioner Role Users | Available |
Available |
Available |
Additional Cold Storage | Not available |
Available |
Available |
Resolution Intelligence Cloud ESSENTIALS | Resolution Intelligence Cloud STANDARD | Resolution Intelligence Cloud PREMIUM | |
---|---|---|---|
Signal Management | |||
Signal enrichment engine | |||
Analytics and correlation of enriched Signals to Situations | |||
Risk Intelligence | |||
ActOns (situational intelligence and adaptive risk prediction based on LIC scoring – Likelihood, Impact, Confidence) | |||
Digital services management module with tagging of HVE (high value entities) | |||
Asset analytics module (prioritization, tagging, service grouping, event routing) | |||
Advanced Analytics and Machine Learning | |||
Signal analytics — Beta | |||
UEBA use cases — out-of-box models | |||
Behavior analytics (UEBA++) — Limited Beta | |||
Custom behavioral modeling, data science augmentation, and behavior-based detection library | |||
Security Analytics Suite | |||
Threat detection mapped to MITRE & cyber kill chain | |||
Threat Actor Intelligence mapped to MITRE | |||
Analytics to map security control gap to MITRE | |||
Vulnerability intelligence (formerly Know) | |||
Out of the box dashboards and no-code custom dashboard builder with visualization | |||
Threat Detection | |||
Modern data & detection engineering — parsers, feeds, content mgmt. & integrations | |||
Detection rules library | |||
Threat feed-based detection | |||
Attack surface management — external exposure scanning and vulnerability integration (ASI – Attack Surface Intelligence) for higher efficacy | |||
Custom Exposures for ASE | |||
Streamlined Cybersecurity Workflow & Response | |||
SOC workflow management and optimization | |||
Advanced ITSM integration | |||
On-call schedules | |||
Escalation policies | |||
Email and push notification | |||
SMS and phone notification | |||
War room for collaboration | |||
Data Framework for Autonomic Security Operations | |||
Next-gen cloud native SIEM (12 months hot storage, threat hunting, powerful detection engine) — Google Chronicle SIEM (free license provided by Netenrich) | |||
Built-in parsers and cloud connectors | |||
Curated, enriched threat intelligence feeds | |||
Best of breed threat feeds from Netenrich and Google | |||
Netenrich's Knowledge Now (Global threat Intelligence) | |||
3rd-party threat intel feeds | |||
Chronicle SOAR / 3rd-party SOAR integration for risk response | |||
Key Platform Operations Elements | |||
Customer Support (24x7; Web) | |||
Customer Success Manager | |||
Customer Support & Customer Success Management | |||
Customer Support (24x7; Web) | |||
Customer Success Manager |
Featured webinar
Watch this on-demand webinar to see Matt Bromiley, a Certified Instructor at SANS Institute, review Netenrich’s Resolution Intelligence Cloud™ and learn key product highlights and areas where enterprises can find value to quickly harness the vast quantities of data within their environments.