Zscaler SIEM Integration Accelerates 'Big Data' Analysis for Security and Compliance

San Jose, California, September 24, 2013

Zscaler, the global security cloud for the mobile enterprise, today announced its Nanolog Streaming Service (NSS), a simplified real-time integration with leading security information event management (SIEM) solutions from HP ArcSight, IBM QRadar and Splunk. Zscaler NSS delivers deeper data analysis and digital security forensics while satisfying compliance requirements – all without demanding the domain expertise required to integrate these point solutions.

“Zscaler NSS enables large enterprises to filter and correlate global log data into the organization’s SIEM in real-time,” said Manoj Apte, senior vice president of product management, Zscaler. “Unlike security appliances that provide syslog, Zscaler’s Nanolog technology correlates transactions from around the world across multiple dimensions every second. This enables enterprise to filter and feed exact events that they care about into their SIEMs rather than investing in a massive logging infrastructure.”

Typical large organizations generate more than 20GB of log data every day, yet struggle to obtain a complete view across complex and distributed cloud and mobile environments, making it difficult to analyze traffic patterns for anomalies and security vulnerabilities. Additionally, it is nearly impossible for SIEM solutions to integrate the volume and flow of this data from multiple sources without additional investment in professional services to develop point integrations. Despite this, many organizations are faced with compliance regulations that require this data to be stored locally for future audit and analysis.

“The value of ‘big data’ is only as great as our ability to correlate, analyze and understand it,” said Bobby Clarke, Information Assurance Manager, Sealed Air. “Working with Zscaler NSS enables us to easily integrate, archive and investigate our security data with SIEM solutions to provide actionable intelligence.”

Zscaler NSS automates the real-time integration of its comprehensive log data into leading SIEM solutions from HP ArcSight, IBM QRadar, and Splunk without requiring administrators to understand each complex integration format. As log data is generated by all users, across all devices and locations, Zscaler NSS easily streams compatible data into the SIEM in real time.

"Many organizations are struggling to get visibility of user activity and behavior in the cloud.  ZScaler NSS is an important information stream for SIEM solutions and delivers in-depth visibility of user and threat activity within the cloud," said Jason Corbin, director, security intelligence strategy and product management, IBM.  "Combined with QRadar's ability to analyze all the other security, application, network activity, user and vulnerability data within an organization, the Zscaler NSS feed adds yet more context around security threats such as malware or out of policy behavior in the cloud. This enhances QRadar's ability to deliver highly prioritized incidents to its users."

Zscaler NSS is a flexible and customizable solution, capable of integrating multiple streams of logs into different SIEMS and pre-processing logs to filter relevant sub-sets of data. Zscaler complements the deep data analysis capabilities of SIEM solutions by providing a comprehensive view into user activity on any device in any location.

Zscaler NSS is available immediately. For more information please visit www.zscaler.com



About Zscaler

Zscaler is revolutionizing Internet security with the industry’s first Security as a Service platform. As the most innovative firm in the $35 billion security market, Zscaler is used by more than 5,000 leading organizations, including 50 of the Fortune 500. Zscaler ensures that more than 15 million users worldwide are protected against cyber attacks and data breaches while staying fully compliant with corporate and regulatory policies.

Zscaler is a Gartner Magic Quadrant leader for Secure Web Gateways and delivers a safe and productive Internet experience for every user, from any device and from any location — 100% in the cloud. With its multi-tenant, distributed cloud security platform, Zscaler effectively moves security into the internet backbone, operating in more than 100 data centers around the world and enabling organizations to fully leverage the promise of cloud and mobile computing with unparalleled and uncompromising protection and performance. Zscaler delivers unified, carrier-grade internet security, next generation firewall, web security, sandboxing/advanced persistent threat (APT) protection, data loss prevention, SSL inspection, traffic shaping, policy management and threat intelligence—all without the need for on-premise hardware, appliances or software. To learn more, visit us at www.zscaler.com.


Additional Resources:

Media Contacts:

Whitney Black 
Director of Communications 
650-260-4616
joynpx@mfpnyre.pbz