Vectra AI today released StreamPlus, an on-premises data lake that collects, stores, and searches important network metadata for organizations that do not use the cloud due to compliance protocols or lack of resources. StreamPlus delivers turnkey productivity by offering all the value of Vectra’s Cognito Stream without the onerous task of building and managing a data lake. The first of its kind, StreamPlus ensures complete control over infrastructure data to meet growing privacy and compliance concerns while empowering proactive threat hunting and investigations to thwart attacks.
With StreamPlus, organizations can seamlessly complete investigations using fourteen different security-enriched metadata streams, including iSession, DNS, DHCP, and many others. StreamPlus further simplifies investigations by allowing analysts to examine specific device names rather than IP addresses.
“The decision to keep certain business-critical workloads on-prem is even pronounced when it comes to cybersecurity as regulatory and compliance frameworks can also add a layer of complexity. However, with digital forensics playing such an important role in effective threat mitigation, there is need for an effective alternative to cloud-based offerings,” commented Ammar Enaya, regional director, Middle East, Turkey and North Africa (METNA) at Vectra.
StreamPlus is delivered in Zeek format, meaning customers benefit from an on-premises data lake without the management overhead, cost burden, or scale limitations that often accompany open-source alternatives. To further accelerate productivity, Vectra has also included curated experiences for investigating accounts and a full suite of dashboards for each of the metadata streams. This ultimately enhances visibility with universal visibility, reducing costs by storing curated network metadata, and exposes gaps in an organization’s security posture through proactive investigation and threat hunting.