VIAVI Solutions has introduced its Observer Threat Forensics platform, featuring enhanced retrospective analysis capabilities. The solution will be presented at VIAVI’s booth N5484 during the RSA Conference, taking place from March 23–26 in San Francisco, CA.
As the industry moves toward a unified NetSecOps approach—merging network and security operations to improve incident response and overall resilience—Observer Threat Forensics is designed to provide greater visibility across teams. It enables organizations to detect vulnerabilities, analyze breaches after they occur, pinpoint intrusion points, and assess what data may have been exposed.
Observer Threat Forensics is built on VIAVI’s heritage in network operation management, combined with secure network infrastructure and threat intelligence powered by CrowdStrike. It brings together packet insights, flow data and log telemetry into a unified NetSecOps workflow, as well as retrospective forensic capability. Additionally, the platform unites site, application, network and UC views into a simple, easy-to-read user dashboard that gives a complete view of the organization’s end-user experience, as well as performance issues and their root causes.
In the State of the Network study from VIAVI, 79 percent of the 750 responding CIOs and CISOs wanted convergence, believing the existing siloed model was ill-suited to modern networks and lacked key visibility, which could introduce risk. However, just 27 percent of the organizations surveyed have started to make the move.
“That two-thirds of those wanting to switch still have not done so highlights the challenges organizations face when transitioning to a converged operational framework,” said Chris Labac, Vice President and General Manager, Network Performance and Threat Solutions, VIAVI. “VIAVI’s Observer Threat Forensics leverages common datasets already collected for our network performance monitoring platform. Because the network traffic, enriched flow data, and metadata are already there, NetOps and SecOps can use the same data to gain performance insights and investigate security threats. We’ve built in an advanced array of NetSecOps functions that together give better awareness of the situation across the entire enterprise, eliminate noise and close the data gaps.”
“Security and network teams can no longer operate in silos – because adversaries don’t,” said Daniel Bernard, Chief Business Officer, CrowdStrike. “By integrating CrowdStrike’s real-time adversary intelligence into VIAVI’s deep network visibility, organizations gain the context they need to quickly investigate incidents, understand impact and stop breaches across domains. Together, we’re helping customers unify NetSecOps workflows with the adversary intelligence required to outpace modern threats.”
VIAVI will be demonstrating Observer Threat Forensics at the RSA Conference as part of its solution portfolio across the NetSecOps lifecycle, from pre-deployment security and performance validation to live threat forensics. Chris Labac and Yury German, Senior Product Manager, will present NetSecOps: Network Visibility for Stronger Security and Performance at the RSAC Insights Theater at 1:30 PM PT on March 24. VIAVI will also showcase CyberFlood security and network application performance testing at its booth.
