red lambda brochure meta grid executive overview
TRANSCRIPT
Advanced Threat Protection and Analytics Solutions for Today’s Big Data World
MetaGrid Executive OverviewTM
Red Lambda is an award-winning technology company that has developed a next generation IT security and analytics solution for Big Data environments. In an industry yearning for innovation, Red Lambda and its flagship solution MetaGrid offer organizations around the world a new way to combat today’s increasingly complex threats.
Challenging the status quo, Red Lambda has navigated through unchartered territory, creating game-changing technology breakthroughs to help retailers, governments, healthcare providers, financial services institutions and other organizations combat malicious internal or external threats to their networks.
MetaGrid was first developed in 2003 at the University of Florida, when a solution was needed to automate how to secure and manage a campus network made up of thousands of students. The campus network was a breeding ground for computer viruses, hacking and illegal file sharing, but identifying and remediating each activity was difficult and time-consuming. In 2006, a National Science Foundation grant was awarded to develop an advanced anomaly detection algorithm, which resulted in the foundation for MetaGrid’s patented Neural Foam technology, a universal anomaly detection solution based on advanced artificial intelligence algorithms.
Beginning in late 2010, Red Lambda focused its product and market strategies on leveraging three technologies together as one unified solution in order to address modern IT security challenges—distributed grid computing, parallel streaming processing, and Neural Foam. MetaGrid was designed to unify the analysis of massive amounts of data and address the security and operational needs of enterprises.
Today, the company’s experienced management team is leading the way in innovation, taking MetaGrid directly to where it is needed to protect networks in the U.S. and abroad, and through key global strategic partnerships.
© 2014 Red Lambda, Inc. All Rights Reserved.
Red Lambda— A History of Innovation
© 2014 Red Lambda, Inc. All Rights Reserved.
Big Data Is Changing the World. Red Lambda Is Changing How We Protect It.
Big data and the technologies behind them have transformed, and will continue to transform every facet of our lives. They can be the driver for a thriving global economic future or in the wrong hands, the abuse of these systems can have dire consequences if we don’t proactively and diligently protect the data contained within them.
It doesn’t matter whether you are a government, a retailer, a financial services organization, a healthcare provider or other entity. Attacks are coming from everywhere. Nation states with political and ideological motivations. Cybercriminals and cybergangs that are paid for stolen personal records on the black market. Hackers with a cause or who simply want notoriety. Insiders such as a disgruntled employee or a rogue contractor. And most serious, cyberterrorists that want to destroy infrastructure and harm citizens.
To combat these growing threats, organizations are spending money—lots of money—on more firewalls, intrusion protection systems, endpoint protection and secure web gateways. Yet despite record-breaking global spending now well into the billions, the headlines don’t lie. We are currently not winning the war on cybersecurity. Organizations are being outpaced, outwitted and outmaneuvered on a daily basis.
Red Lambda can help organizations shift the balance of power and win in the cybersecurity arena.
MetaGrid is our an advanced threat detection solution that for the first time, applies Big Data and advanced analytics capabilities to the global challenges of IT security, delivering the fastest threat and anomaly detection system on the market.
Red Lambda is revolutionizing the way the world protects itself. And the stakes couldn’t be higher…
2
© 2014 Red Lambda, Inc. All Rights Reserved.
MetaGrid —Advanced Threat Protection at the Speed of Stream
In the world of IT security, every nanosecond matters. Reaction time to a potential cyberattack is critical. Only a thin line exists between your ability to identify and react to a threat, and having it wreak havoc on your organization.
With so much at stake—from trade secrets, to customers to an executive’s career, to national security—you need the ability to detect suspicious, malicious or novel behavior faster than ever before possible. In other words, as it hits your network. Not in an hour. Not in 3 hours. Not in a day.
You need to know the precise moment that something is threatening your network. You need the ability to stop an active attack.
MetaGrid gives you this ability. MetaGrid is a next generation advanced threat detection solution that gives businesses, governments and other organizations the advanced technology to detect previously undetectable threats— the “unknown unknowns”— faster than anything available today on the market.
3
■ Protect your clients’ personal and private information
■ Protect critical infrastructure
■ Protect national security ■ Protect trade secrets
intellectual property
■ Preserve your corporate reputation
■ Preserve professional reputations
■ Protect lives on the battlefield
MetaGrid helps you:
TM
© 2014 Red Lambda, Inc. All Rights Reserved.
The MetaGrid Triple Play Difference
We knew that to achieve unparalleled threat and anomaly detection faster than ever before possible, we had to converge three key technologies into one unified solution to overcome the limitations of volume, variety and velocity: Big Data, advances in IT security and business analytics.
We call this our “Triple Play.”
First, MetaGrid’s foundation is built on its massively scalable supercomputing grid platform. This grid platform is the means by which all limits of volume, scale and storage are completely removed from the security equation. The platform ingests the feeds from all the point solutions across the typical IT security environment—SIEMs, firewalls, intrusion protection systems and other data silos—and feeds them into the grid, unifying the data and providing intelligence and situational awareness through a single view.
Next, we developed advanced capabilities to overcome the key challenges inherent within traditional, highly distributed IT environments. For example, in order to use all the data captured from every feed, we made MetaGrid data agnostic, so it’s able to consume all data, from any source, everywhere, all the time, simultaneously. Additionally, MetaGrid can consume data while it is still in motion—in stream time—without having to come to rest. This is very different from systems that bring the data to rest before a query can be performed. Data at rest is stale. Data in motion is fresh. It’s the difference between detecting an anomaly in 60 seconds versus 6 months. That’s why MetaGrid can detect anomalies faster than any other solution on the market.
Finally, we knew that by applying advanced analytics, we could give security professionals a way to easily visualize and understand the data. So we created Neural Foam™. Neural Foam is our patented artificial intelligence breakthrough built into MetaGrid. Neural Foam applies grid computing power to accelerate the analysis and identification of all anomalies and patterns across data of any volume, variety, and velocity.
What this means to you is that you now have the right technology, built from the ground up, to go beyond the limitations of your legacy systems by augmenting their capabilities with MetaGrid.
4
TM
© 2014 Red Lambda, Inc. All Rights Reserved.
The Platform
The MetaGrid platform is a supercomputing system where everything in the system is processed continuously as it operates. It delivers all the power and control of a single system, even though it can use every computer across your entire, globally-distributed enterprise as if it were one. Under the hood, it is dynamically load balancing event-by-event, moving processing adaptively around the grid. Essentially, computation lives on the grid as a mobile process.
MetaGrid’s massively scalable grid processing capabilities deliver the scale needed to unify disparate solutions such as SIEMs, firewalls, intrusion protection systems and other data silos so they feed into the grid, working together to overcome historic technology barriers, providing intelligence and situational awareness through one lens. MetaGrid’s computing platform completely removes the limits of speed, scale and storage.
Additionally, MetaGrid doesn’t require significant spending in more security appliances, security soft ware, or other computationally-intense components. This helps protect and leverage your existing investment in the security infrastructure you already have in place.
The MetaGrid Architecture
Relational Stream Processing
To gain true situational awareness, you have to be able to consume all the data, from everywhere, all the time. MetaGrid’s patented stream processing capabilities do this. MetaGrid delivers the speed necessary to do on-the-fly anomaly detection on massive amounts of data from any type of source (structured, unstructured, hybrid, and even binaries). MetaGrid is data agnostic, so it doesn’t care what kind of data it takes in. If it’s data, MetaGrid can ingest it all. The system can consume, cluster, classify, correlate and detect anomalies right on the network’s edge at hundreds of thousands of events per second.
5
© 2014 Red Lambda, Inc. All Rights Reserved.
Neural Foam : MetaGrid’s Patented Artificial Intelligence Engine
Neural Foam, MetaGrid’s patented artificial intelligence engine, is based on fundamental break-throughs in operationalizing artificial intelligence and algorithmic information theory applied to real world IT security challenges. It is the power within MetaGrid that gives it the ability to solve the challenge of not knowing what to look for until you find it. With Neural Foam, you can now find the “unknown unknowns.”
Using Neural Foam, MetaGrid finds meaningful and unusual events, sequences, rates, and correlations on the fly, across any number of concurrent event streams, without prior knowledge of the source or structure of the stream, so it is not constrained by rules or signatures. Neural Foam clusters records by similarity, quickly and visually highlighting the outliers that are unique or anomalous as well as reducing hundreds of thousands of records down to a few nodes of relevant data. Because the findings are presented visually, it is easy and intuitive for security domain experts to see the anomalies and further investigate.
6
TM
© 2014 Red Lambda, Inc. All Rights Reserved.
How MetaGrid Works—A Four Step Process
MetaGrid’s technology advances and patented capabilities enable organizations to analyze vast amounts of network and security data so they can immediately discover all anomalies, threats, and patterns that could pose a threat to their data assets and their organizations.
Here’s how MetaGrid does this:
Capture All Data
Companies don’t just have one giant monolithic data set. Instead, they have many data sets in a variety of forms and locations created and stored throughout the enterprise. That’s why we designed MetaGrid to ingest all data—if it is data, we can consume it. This is critical for IT secu-rity, because situational awareness requires visibility at all levels; there can be no dark corners. MetaGrid delivers unprecedented data acquisition capabilities, seamlessly integrating structured, semi-structured and unstructured data on a single platform for search and analysis.
7
© 2014 Red Lambda, Inc. All Rights Reserved.
Analyze Everything
Leveraging key breakthroughs in information science that provide heightened capabilities to handle massive data sets, MetaGrid’s patented Neural Foam artificial intelligence engine arranges events into clusters of data that all share common patterns. Each cluster is a compressed repre-sentation that significantly reduces the work required to explore the data. Simultaneously, Neural Foam classifies events based on prior learning and discovers anomalies. It then visualizes the results, presenting the most unusual events within their operational context.
Correlate the Results
Nothing in the real world happens in a vacuum. In order to reflect the interrelated nature of the real world, data must be processed together from multiple sources to yield actionable intelli-gence. MetaGrid’s correlation capabilities discover deep relationships across different sources of data. While legacy approaches correlate information using manual rules over structured data, MetaGrid uncovers relationships in data of any type, structured or unstructured. MetaGrid’s Neu-ral Foam artificial intelligence engine automatically correlates data from any number of concur-rent sources simultaneously to discover meaningful relationships and interactions in your data.
Automate Processes
The ability to stop an in-process attack in its tracks requires rapid remediation. MetaGrid offers a highly customizable, scalable policy engine to empower the system to push mitigation methods throughout the entire IT environment to contain and quarantine infected systems before they spread.
8
© 2014 Red Lambda, Inc. All Rights Reserved.
MetaGrid Highlights and Benefits
Universal anomaly detection — MetaGrid’s patented Neural Foam artificial intelligence capabilities find anomalies in any data, without the constraints of rules or signatures, in order to find the “unknown unknowns.” Neural Foam finds unusual events, sequences, rates, and correlations on the fly, across any number of concurrent event streams, without prior knowledge of the source or structure of the stream. Neural Foam clusters records by similarity, quickly and visually highlighting the outliers that are unique or anomalous as well as reducing hundreds of thousands of records down to a few nodes of relevant data.
Processes in stream-time for true real time intelligence — MetaGrid handles massive amounts of any type of data while it is still in motion, or in “stream-time.” MetaGrid can consume, cluster, classify, correlate and detect anomalies on the fly at hundreds of thousands of events per second. While other systems claim “real time” processing, they depend on batch processing and centralization that brings the data to rest before triggering analysis. Instead, MetaGrid acts on the data in stream-time, so the data does not come to rest until it has been fully analyzed and acted upon. Only then is it stored or archived, remaining indexed and searchable. This is critical because the moment data comes to rest, analytics becomes forensic versus preemptive.
Combines and unifies data feeds from disparate point solutions — MetaGrid delivers the scale and speed needed to consume and combine hundreds of unique data feeds with non-uniform syntax from disparate point solutions such as SIEM, firewalls and IPS. MetaGrid enables these silos of data to work together, providing unified intelligence and automation within large network infrastructures.
Leverages your existing resources — Because MetaGrid is software based, it can be deployed on almost any common operating system you already support, enabling you to leverage current resources.
Empowers the domain expert — MetaGrid empowers the security expert by delivering advanced data science tools and visualizations that condense massive volumes of data into the critical information and situational awareness needed to protect the attack surface and secure an organization’s data assets faster and easier than ever before.
Easy to maintain and scale — MetaGrid can be deployed in a distributed architecture on inexpensive, off-the-shelf servers and operating systems that are already widely used throughout your organization. When you need capacity, add a server. If you take a node out for service, it won’t affect performance. The other nodes on the grid will pick up the slack.
9
© 2014 Red Lambda, Inc. All Rights Reserved.
Despite billions of dollars spent annually on SIEM, intrusion protection, firewalls and other security technologies, internal and external threats to your data are growing exponentially. The volume, velocity, variety and veracity of information that private and public sector organizations deal with daily has increased dramatically. As a result, the attacks are outpacing—and outsmarting—today’s existing legacy systems.
But the tide has changed.
Red Lambda delivers a breakthrough, enterprise-scale Big Data solution to solve today’s IT security challenges—MetaGridTM.
MetaGrid is designed to detect anomalies hitting your network faster than any other solution on the market today—including the “unknown unknowns.” And immediate detection means your organization can shut down the threat before damage is done.
Red Lambda is positioned on the frontlines of your IT security and analytics challenges. We are ready to help you now and well into the future.
10
Red Lambda — Leading the Big Data Security and Analytics Revolution
©2014 Red Lambda Inc., all rights reserved. Red Lambda®, the Red Lambda logo, the Lambda logo, MetaGrid™, Neural Foam™, and all other Red Lambda marks contained herein are trademarks of Red Lambda, Inc. Third parties’ names or marks are the property of such third party and Red Lambda claims no interest therein. v.09022014
Phone: +1.407.682.1894 Fax: +1.718.247.1852
Orlando, FL, United StatesLondon, United Kingdom