There are many different sources of information for threat intelligence and enterprise security risks. But while security professionals crave granular levels of detail, line-of-business executives may just feel overwhelmed.
SurfWatch Labs' software-as-a-service (SaaS) platform takes away that confusion by offering a top-level view of enterprise security.
"The purpose of our platform is to connect the business side of the business with an understanding of how cybercrime impacts the business and its partners," Jason Polancich, founder and chief architect at SurfWatch Labs, explained to eSecurityPlanet. "We try to bridge the gap between the highly technical side, where data is often trapped, to help inform business planning and strategy."
Polancich said his goal for the company is to be like a Salesforce.com for cyber-event data. SurfWatch Labs enables organizations to analyze internal enterprise data, as well as data from across the broader industries that they participate in.
Update for the C-Suite
One of SurfWatch Labs' main offerings is the c-suite solution that is now being updated to version 3.0https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
"C-Suite is a focused business intelligence platform for cyber event data," Polancich said. "It gives cyber operations teams the ability to report on cyber event data and then compare that data to what others in the industry are seeing."
The software provides business-level dashboards for c-level executives and allows them to see how their organization stacks up against others from a security perspective. The big new addition in C-Suite 3.0 is the ability for an organization to map its own metrics against industry norms and averages.
"Organizations are not 'dumpster diving' for data anymore, we're actually driving data to them via alerts," Polancich said.
The SurfWatch Labs teams send alerts that are relevant for specific verticals. So, for example, if the organization is in the medical industry and there is a new vulnerability in a medical device, Surfwatch Labs will deliver an alert for that item.
From a technology perspective, Polancich said that the data ingesting system at SurfWatch is all proprietary. The data warehousing component includes the use of open source technologies PostgreSQL, MongoDB and Hadoop.
"It's a mix and match of just about everything you can imagine," Polancich said of his company's back-end infrastructure.
While Surfwatch Labs C-Suite is aimed at business executives, the focus is not on governance risk management and compliance (GRC). Polancich said that Surfwatch Labs is trying to steer clear of GRC on purpose. He noted that one of the big themes behind the company is the delivery of practical cybersecurity.
"We're trying to put simple tools into the hands of people that can use them," Polancich said. "We're not diving into the regulatory and compliance bits, but we do have customers that take our data and put it into a GRC solution."
Sean Michael Kerner is a senior editor at eSecurityPlanet and InternetNews.com. Follow him on Twitter @TechJournalist.