SAS Cybersecurity

SAS Cybersecurity is a product on the basis of analytics for protection against cyber attacks.

2019: Application of opportunities of machine learning and AI for identification of potential cybersecurity incidents

On April 15, 2019 the SAS company announced updating of the solution SAS Cybersecurity.

According to the company, once reliable companies even more often are exposed to the target attacks and lose trust of partners and clients because of date leaks. 2018 became demonstrative in this plan, and many organizations began to review approach to information security.

In 2018 universal expenses on cyber security made 114 billion US dollars. It means that all occurred incidents and date leaks – result not of failure to act or ignoring of a problem, and insufficient efficiency of the used protection mechanisms. For April, 2019 the normal company uses more than 30 different products of security for protection of the infrastructure and the processed data. The irony is that such scrappy blanket from the various systems of protection just and promotes vulnerability growth. Stew Bradley, vice president for security of SAS

According to the company, application of the separated, isolated solutions in the field of cyber security can provide only the fragmented picture of the current risk. The lack of the centralized means of correlation and the analysis of events of security from different sources can lead to the fact that the difficult attack involving different methods and sales channels of threats will remain unnoticed. The updated solution SAS Cybersecurity reduces the protection given from the separate systems and components of corporate infrastructure in an overall picture and uses possibilities of machine learning and artificial intelligence for the deep analysis of the occurring events and identification of potential incidents of security.

The solution has transparent architecture of "a white box" and offers the analytical algorithms and tools configured on the solution of standard problems of information security checked and proved the efficiency. The solution "from a box" includes more than 70 analytical models and complex rules directed to identification of potential threats and also provides a possibility of development of other models. Such models can be developed in different programming languages, including using the open source software. The exact analytics which reveals risks of security at the earliest stage is result, helps to define effective methods of response to the arising threats and also options of optimization and priorities of completions in the current system of protection.

It is necessary for the organizations more, than just algorithms of detection of threats. They need complex architecture and a uniform set of analytical opportunities for security and the managed processes of protection of networks. We see that SAS can provide such protection as combines powerful tools of data analysis and examination in cyber security. John Oltsik, top analyst of Enterprise Strategy Group

SAS Cybersecurity is built in the existing corporate infrastructure of cyber security, helping the organizations to apply artificial intelligence and machine learning to detection and investigation of events and incidents of security. Continuous control of network activity and also the analysis of the events registered on different devices of corporate network helps the staff of divisions of security to detect and prevent unauthorized access to data and the difficult harmful attacks.

The solution of SAS contains integration tools and ready descriptions of data for standard sources and also allows ability to integrate with other corporate systems, including using non-standard or rare formats of data view.

Even the most prepared organizations face a set of the difficulties complicating effective counteraction to constantly developing threats:

• Quality of data. Often is overlooked that data management – a crucial element for any analytical system. Security, this, necessary for the detailed analysis of events, are, as a rule, kept on separate components of corporate infrastructure in different formats. That effectively to use these data, it is necessary to provide their quality previously: data should be aggregated and supplement each other. Such data preparation, as a rule, takes about 80% of time of security experts, leaving only 20% for investigation of incidents of security.
• Lack of qualified personnel in the field of cyber security. For April, 2019 worldwide deficit approaches 3 million workers (about 500 thousand only in North America), and it is difficult to find qualified specialists in security. In this situation it is necessary to automate as much as possible the current management processes of cybersecurity, involving experts in the field of cyber security only in investigation of really important and critical events and incidents of security.
• Large number of false notifications. For April, 2019 42% of staff of divisions of security say that their organizations ignore a significant amount of warnings and set the raised thresholds for a cut-off of the false alert containing inexact and unchecked information. Such situation often leads to the fact that really important notifications are lost in the general flow of warnings and remain unnoticed.

According to representatives of the company, the advanced SAS Cybersecurity tools are capable to help to consolidate data and also time and resources which are required for data preparation and management of them. Exact calculation of risk of threat allows to reduce considerably number of false operations and, as a result, total amount of notifications which require additional check and processing. The effectiveness of efforts on identification of threats and to conducting investigations increases thanks to machine learning technologies and artificial intelligence. At the same time users have all completeness of information, and the management has an evident and clear reporting under security status.

2016: Description of SAS Cybersecurity

For January, 2016 at the heart of SAS Cybersecurity — flexible technology which helps players of the most different segments of the market to cope with calls and to achieve the goals connected with protection against cyberthreats and warning of losses against attacks to corporate network.

SAS Cybersecurity helps the companies to reveal these threats and to protect information and other assets. By means of a combination of monitors in real time and profound data analysis, in a huge data stream  of SAS Cybersecurity can detect the hidden signs of anomalies and suspicious actions.

The solution helps to analyze quickly big data streams, investigating them on presence of aberrations. Anomalies come to light at an early stage. The solution SAS Cybersecurity is focused to not only banks, but also other companies which value information and reputation.

It is enough to open the newspaper or the website to see that cyberthreats – one of the most serious calls of our time. They mention all – business, the governments, consumers. Because of cyber attacks, for example, the system of Internet banking or your account in social network can be unavailable to you, or your card of loyalty in favourite shop can not work, or you will receive the mass of spam. The new solution of SAS Cybersecurity just is also aimed at helping the most different organizations to answer adequately this call and to protect valuable data assets and services. Dmitry Konovalov, head of counteraction to fraud of SAS Russia/CIS

2015: Representation of a product

 The product SAS Cybersecurity was provided in 2015.

2014: Testing in the American companies

During 2014, one year prior to official release, development  of SAS Cybersecurity passed test in several American companies and proved the efficiency.