Active Response

Take Action Now

In a perfect world, all of your systems would be patched, there would be no such thing as a zero-day attack, worms wouldn't traverse the internet in a matter of minutes, and you'd actually get to take vacations.

The reality is that you face a highly automated enemy that will stop at nothing to exploit any weakness, so Automated Remediation is a technology that needs serious consideration.

As a SIM-based product,TriGeo has a unique view of the network. It can monitor data from firewalls, routers, switches, servers, workstations,IDS and even IPS products,and has the ability to spot patterns of behavior that could easily be missed by other network defense technologies.

For example, the IPS isn't going to spot log on attempts to administrative accounts or monitor the service process exit of your anti-virus software and correlate the source IP with rejected SMTP traffic from the firewall. Yet, that pattern is classic worm behavior, and an appropriate response may be to quarantine the workstation.

TriGeo's Automated Remediation through Intelligent Correlation™ empowers IT administrators with 24/7 policy enforcement and active network defense. TriGeo will notify, but when the situation warrants, TriGeo will act.