Gerald Delplace, Guardicore: We detect sophisticated attacks in minutes
July 2017 by Marc Jacob
Guardicore will once again be present at the “Assises de la Sécurité”. This year the company will present its fault detection solution within data centers. This product provides instant visibility, detection and identification of an attacker. For Gerald Delplace, France Director, Benelux and Nordics, Guardicore, its solution gives companies a permanent ability to detect and counteract sophisticated attacks within the data center, in minutes and not in months .
GS Mag: What are you going to present at the Assises de la Sécurité?
Gerald Delplace : Today’s rapidly expanding, dynamic data centers have become prime targets for infiltration and attacks with alarming frequency. Security teams are hard pressed to keep pace with the staggering rate of data center breaches. As organizations that have been compromised know all too well, detecting a live breach is extremely difficult. In spite of their best efforts, security teams are often overwhelmed by the amount of “noise” indicating possible breaches, most of which turn out to be false positives. With insufficient insight into the nature of incidents, prioritizing them for investigation is a major challenge. Incident response based on conventional investigative methods is too often hampered and slowed by uncertainty and “analysis paralysis.” GuardiCore enables IT teams to put breach detection capabilities inside the data center where it is difficult to deploy traditional security solutions, and gain instant, deep visibility and insight for detection, exposure, and identification of an attacker.
GS Mag: What will be the theme of your conference this year?
Gerald Delplace : Data Center Security: Improve Incident response through increased visibility
We will cover the following aspects:
• Controlling lateral movement through Dynamic Deception
• The importance of East-West traffic visibility
• Policy violation as an incident
• Threat Intelligence for your data centers
• Types of recon activity by adversaries in the data center i.e. port scanning etc.
GS Mag: How will your offer evolve for 2017/2018?
Gerald Delplace : GuardiCore continues to execute on our vision to provide real-time protection for modern data centers and clouds. Data centers and clouds are the repository of highly sensitive, critical information and proprietary organizational processes. By its very nature, it is a prime target for cyber-attacks. Once inside, intruders are very hard to detect and counteract. Using conventional technologies, it may take months to even discover a breach, let alone identify its source and take appropriate remediation measures, by which time significant damage or losses may have already occurred. The GuardiCore Centra Security Platform delivers more accurate and effective ways to stop advanced threats through real-time breach detection and response.
GS Mag: How does your product enable companies to meet the new compliance requirements of the LPM, the NIS Directive or the RGPD?
Gerald Delplace : GuardiCore Centra was designed to prevent, identify and respond to security and data breaches faster with greater intelligence and can help organizations to achieve compliance.
Until now, east-west traffic within workloads in data centers and clouds has been a huge blind spot in the enterprise security infrastructure, making them vulnerable to attacks from inside or those that succeed in breaching perimeter defenses. GuardiCore eliminates this critical security gap. Our flagship product, the GuardiCore Centra™ Security Platform, is specially designed for modern data centers and clouds, providing real-time visibility, detection and response to active breaches. Its lightweight architecture scales easily to support the performance requirements of high-traffic environments, and supports virtually any type of data center architecture. And our unique, multi-method breach detection—based on patented dynamic deception, policy-based detection and reputation analysis—quickly identifies, investigates and thwarts confirmed attacks with pinpoint accuracy.
GS Mag: What will be your business strategy for this year?
Gerald Delplace : We will capitalize on our references and prove our innovative platform approach to securing workloads inside data centers and clouds. While some enterprises often approach securing these workloads by implementing deception, our unique platform approach provides a single solution for visibility, high-interaction deception and micro-segmentation. We’ll accelerate partnerships with integrators and some security vendors like SIEM suppliers, build an ecosystem with IaaS providers, and establish Guardicore as leader and trusted provider.
GS Mag: What is your message to CISO?
Gerald Delplace : Focused exclusively on breaches inside the data center, GuardiCore is the only security solution that provides a single, scalable platform that covers five critical capabilities for effective data center security: flow visualization, micro-segmentation, multi-method breach detection, automated analysis and response. Our goal is to give enterprises a permanent upper hand in detecting and thwarting sophisticated attacks within the data center—in minutes, not in months—potentially saving millions in damages and losses.