With Cb Response, security teams’ total incident response time shifts from 78 hours to less than 15 minutes per incident. Root-cause identification shifts from 20 hours to less than 10 minutes, according to incident response professionals who regularly use Cb Response.
“Cb Response 6.0 is a game-changing solution for incident responders,” said Michael Viscuso, Carbon Black’s chief technology officer and co-founder. “Competing products, like Tanium, focus on answering a single question. Most investigations typically require answers to thousands of questions. Cb Response empowers security teams to complete full investigations in minutes, including root cause. Without root cause, Tanium’s customers will never get ahead of attackers. Additionally, Tanium’s ‘15-second search’ only answers questions for machines that are currently online. When the fate of a company lies in incident response, security visibility can’t be a nine-to-five endeavor.”
Cb Response’s new Process-Timeline View of events empowers security teams to conduct complete incident response investigations faster and more thoroughly than ever before.
New enhancements in Cb Response 6.0 include:
- Unlimited Scaling: Scales to the largest of enterprises, supporting hundreds of thousands of endpoints with a new, innovative system architecture, for on-premises deployments.
- New UI Built for Fast Search and Proactive Threat Hunting: Quick and agile search features via a new Process-Timeline View, which enables investigators to zoom in on specific timeframes via click-and-drag functions or broadly view the timeline to note anomalies. Investigators can zoom in or out in seconds to pinpoint threats.
- Unlimited Data Retention: A multi-tiered data-storage model provides immediate access to archived data and complete visibility into any attack regardless of when it started.
Nominated for the 2017 SC Magazine Excellence Award for “Best Enterprise Security Solution,” Cb Response offers immediate ROI for customers, including:
- Infrastructure built for speed and real-time response
- A solution that’s proven at scale to fit in any enterprise
- Complete visibility that the (Security Operations Center) SOC needs to see the most advanced threats
- A solution that empowers proactive threat hunting
About Cb Response
Cb Response is the most precise IR and threat hunting solution for SOC practitioners, allowing them to get the answers they need faster than any other tool. Only Cb Response continuously records and captures all threat activity so security teams can hunt threats in real time, visualize the complete attack kill chain, and then respond and remediate attacks quickly. The result is zero-gap endpoint visibility. Investigations are accelerated because the information needed is always available with conclusive answers to investigation questions. With Cb Response, alert validation and triage are streamlined because the details of what caused an alert are at responders’ fingertips.