3 min read
Resolution Intelligence Cloud
A cloud-native data analytics platform leveraging Google Chronicle for secure operations at service-provider scale.
Resolution Intelligence Cloud plans fit wherever you are on your journey to secure operations at scale.
Real-time data analytics for secure operations at scale and speed
Resolution Intelligence Cloud is a native cloud data analytics platform for managing security and digital operations at scale. The platform transforms security and digital operations by ingesting all data across security and operations, identifying pre-incident situations, ranking them by business risk, and correlating extensive context for proactive resolution.
CIOs and CISOs face increasing infrastructure complexity and an onslaught of threats. Multiple monitoring tools, siloed teams, and the growing need for hard-to-find talent busts budgets, doesn’t scale, and isn’t working. Leading CIOs and CISOs need to proactively manage risks to the business based on data, not react to low-level events. They need to make existing teams more effective.
It starts with data at scale, the more the better. Resolution Intelligence Cloud applies advanced analytics and machine learning across real-time operations and security data. It detects patterns that indicate risk — before incidents occur. So security and ops teams have situational awareness, context, and a common operational picture that optimizes their effectiveness.
The platform automates low-level investigation tasks and uses machine learning to reveal risky behaviors and pre-incident situations, called ActOns™. ActOns present information you can act on: highly correlated information about related events, assets, and users over time. Prioritized based on impact, likelihood, and confidence, ActOns indicate where to focus first to minimize business disruption. Analysts have a single
place to collaborate with context and make decisions with data for fast resolution.
Resolution Intelligence Cloud leverages and operationalizes Google Chronicle for scale and speed, adding multi-level multitenancy, easy-to-use content management for rules and parsers, and more. The platform integrates with Chronicle SOAR and ITSMs to speed resolutions.
Resolution Intelligence Cloud plans fit wherever you are on your journey to secure operations at scale:
Foundation – Ingest all your data without penalty. Jumpstart Google Chronicle for security data and threat detection at Google speed and scale. Foundation provides multi-level multitenancy, rolebased access control (RBAC), single sign on (SSO), detection rule and parser packs, Netenrich threat intelligence, real-time dashboards and reports, and more. Create, test, and publish Chronicle rules and parsers to one or multiple tenants from a user-friendly interface.
Analytics – Get situational awareness and be proactive with real-time data analytics and machine learning that reveal risky behaviors and pre-incident situations, called ActOns™. Scored by business risk, so you know where to focus, ActOns present information you can act on by correlating events, assets, users, and other related data. Up-level staff by automating Tier 1 and Tier 2-level tasks.
Resolutions – Resolve situations quickly and effectively with data: highly correlated information about related events, assets, and users. Analysts, colleagues, ops, customers, even third-party experts can collaborate with context and see what happened when. Two-way integration of ActOns with Chronicle SOAR and ITSMs speeds resolution and enriches existing resolution workflows.
See reverse for features in each plan.
Contact us and find more information at netenrich.com. Buy now on Google Cloud Marketplace
Pricing starts at $45 per covered personnel per year with a one-year contract. Have Chronicle? Contact us.
Foundation
|
Analytics | Resolutions |
Base Platform
|
|||
Multi-level multitenancy, RBAC, SSO
|
|||
Google Chronicle
|
|||
Google Chronicle licenses from Netenrich
|
|
||
Integration with Chronicle SOAR
|
|||
Data Ingestion
|
|||
Cloud, Hybrid Cloud, On-prem
|
|||
Content Management
|
|||
Parser packs & parser management
|
|||
Detection rule packs & rules management
|
|||
Netenrich Threat Intelligence
|
|||
Curated, enriched threat intelligence feeds
|
|||
Signal browser
|
|||
Listing of alerts
|
|||
Real-time Dashboards and Reports
|
|||
Out of the box and DIY
|
|||
Support
|
|||
Customer success management (CSM)
|
|||
Customer support
|
24/7 (Web) | 24/7 (Web) |
24/7 (Web)
|
Analytics and Situational Awareness
|
|||
Analytics workbench
|
|||
User entity behavior analytics | |||
Attack surface intelligence
|
|||
Threat detection mapped to MITRE
|
|||
Indication of Compromise intelligence
|
|||
Vulnerability management
|
|||
External threats
|
|||
Threat models
|
|||
AIOps
|
|||
Automation
|
|||
Tier 1+ SOC automation
|
|||
Tier 1+ NOC automation
|
|||
Asset Intelligence
|
|||
For cloud assets (GCP, AWS, Azure)
|
|||
ActOns
|
|||
Scoring: likelihood, impact, confidence
|
|||
ActOns for analytics (peace time)
|
|||
ActOns for resolutions (war time)
|
|||
ActOn timeline | |||
ActOn war room for collaboration
|
|||
ActOn policy
|
|||
ActOn integration: Chronicle SOAR, ITSMs
|
3 min read
A cloud-native data analytics platform leveraging Google Chronicle for secure operations at service-provider scale.
1 min read
Resolution Intelligence Cloud capabilities listed below are available in Resolution Intelligence Cloud Foundation for Google Chronicle.
3 min read
Resolution Intelligence Cloud is a cloud-native platform for managing digital operations efficiently and effectively at scale with operational data...
We're here to help! Let's talk about how Netenrich can help you jumpstart Chronicle plus get multitenancy, rule and parser packs, real-time dashboards, implementation support, and much more with Resolution Intelligence Cloud.