Gurucul Risk Analytics
Predictive Security Analytics to Detect Unknown Threats and Reduce Access Risks
Gurucul Risk Analytics (GRA) is a behavior based security analytics and intelligence platform on open choice of big data. GRA leverages over 1400 Machine Learning Models powered by data science to produce actionable risk intelligence. GRA does not rely on signatures, rules or patterns. It is intended – from the ground up – to identify zero-day threats and is designed to provide both contextual and situational awareness.
Gurucul Risk Analytics detects and stops malicious behavior before cyber criminals or rogue insiders can do harm. GRA is the only security analytics platform that can ingest all data sources out-of-the-box. It can ingest data from any source, including proprietary business applications, to give you the most accurate 360-degree view of a user’s or entity’s behavior. In addition, GRA runs on your choice of big data platform: Hadoop, Hortonworks, Cloudera, Amazon EMR and more.
Gurucul Risk Analytics leverages a comprehensive risk engine which performs continuous risk scoring based on historical and current behavior. GRA provides real-time risk prioritized alerts for incident analysis. The dynamic risk scores can be used to trigger an automated risk-response workfloww.
Gurucul Risk Analytics leverages Gurucul Data MineTM, an open source big data backend. Gurucul Data MineTM is used to correlate, link and store data from applications, platforms, NetFlow, threat intelligence, and other security solutions. GRA uses this contextual information for machine learning, behavior analytics and deep learning.
Why Choose Gurucul Risk Analytics?
Gurucul offers advanced security analytics that goes beyond the traditional rules-based detective controls. GRA leverages big data and advanced machine learning algorithms to predict, detect and prevent insider threats, access outliers and cyber fraud in enterprise and cloud environments.
Model good behavior to expose unknown bad behavior through peer groups, clustering and outliers.
Analyze access and its abuse with identity-centric behavior analytics from big data.
Modify our analytics or build your own with Gurucul STUDIOTM.
Provide behavior analytics for on-premises and cloud application hybrid deployments.
Detect insider threats, account hijacking, data exfiltration and cyber fraud.
Leverage predictive security analytics to risk-score incidents and drive ‘find-fix’ focus.
Gurucul Risk Analytics Products
Gurucul Risk Analytics has three products that uniquely combine data science and machine learning models to deliver behavior based security analytics and intelligence:
User and Entity Behavior Analytics (UEBA)
Provides behavior-based predictive risk scoring
• Risk-scored timeline to predict, detect and deter insider and advanced threats
• Identity-based threat plane behavior analysis for account hijacking and abuse
• Proactive and actionable alerting for anomalous behavior and risk scores
• High privileged access anomaly detection for misuse, sharing, or takeover
• Customizable dashboards, configurable policies and risk model optimization
• Work-centric UI with case management, or input to third-party solutions
• Self-audit portal deputizes users for risk awareness to detect identity theft
Identity Analytics
Provides risk-based compliance and provisioning
• Real-time 360-degree contextual view of identities, access and activities
• Identity analytics and roles from behavior analytics machine learning
• Radical reduction of accounts and access entitlements using behavior-based access
• High privileged access detection, plus obsolete, orphan and unused access reporting
• Risk-based certifications and dynamic access provisioning reduces effort and errors
• Access outlier discovery based on usage and dynamic peer group analytics
Cloud Security Analytics
Delivers a holistic real-time view of identity, access and activity, ensuring optimal security in the cloud
• Deliver advanced security analytics for SaaS cloud applications including IaaS, PaaS, and IDaaS
• Leverage API-based cloud access security broker (CASB) architecture
• Provide users with a transparent experience in any location or network, with any device
• Synchronize seamlessly with UEBA and identity analytics on-premises and for hybrid environments
• Meter cloud applications at the account level based on access and activity
Gurucul Risk Analytics Capabilities
Gurucul STUDIOTM
Largest library of prepackaged machine learning models and the ability to build your own
Enterprise Risk Engine
Drive risk-based security controls and define risk your way
Alerting & Case Management
Comprehensive case management capabilities and alerting techniques
Dashboards & Reporting
Widget driven configurable dashboards and reporting for security operations, audit & compliance
Gurucul Miner
Natural language contextual search for investigations
Risk-Response Workflow
Response workflows for automated risk remediation
GURUCUL STUDIOTM
Create custom machine learning models without coding and needing only a minimal knowledge of data science. Gurucul STUDIOTM provides a step-by-step graphical interface to select attributes, train models, create baselines, set prediction thresholds and define feedback loops. As part of Gurucul Risk Analytics (GRA), STUDIOTM supports an open choice for big data and a flex data connector to ingest any on-premises or cloud data source. Step outside the black box and create custom models for your own predictive security analytics needs.
“Gurucul Risk Analytics reduced the number of accounts and entitlements by 83%, plus defined intelligent roles and provided dynamic access provisioning, using a behavior-based risk context.”
– AVP Cyber Security, IT Services Company