Alert Logic, the leading provider of log management, intrusion detection and cloud security solutions for enterprises and services providers, today announced the creation of its Content, Operations automation, Research and Emerging threats (C.O.R.E.) team. C.OR.E focuses on security research aimed at new threat detection as well as developing processes and product content to provide superior network security for Alert Logic partners and customers.
Collaborating with the Alert Logic Security Operations Center (SOC), C.O.R.E. mines and correlates up-to-the minute data from the world’s largest service providers and Alert Logic appliances deployed globally to identify and qualify Internet-scale threats, including malicious code propagations, worms and DDoS attacks. By employing automation techniques, this sizable dataset is analyzed continuously to develop and update Alert Logic signatures, complete with threat analyses, which are pushed directly to globally deployed Alert Logic appliances.
“The C.O.R.E. team acts as an early warning system,” said Gray Hall, chief executive officer at Alert Logic. “With our SaaS delivery model, their research and findings can immediately benefit customers by integrating content of newly detected threats into our products and services without the need for patches or upgrades.”
Led by Alert Logic’s director of security research, Johnathan Norman, the C.O.R.E. team is comprised of 11 information security analysts who have a combined 100 plus years of experience working on vulnerability and exploit research, host-based Intrusion Prevention System (IPS) development, Intrusion Detection System (IDS) signature development and malicious code reverse engineering. This experience is what led team members to rank number one in the December 2009 AllStar Challenge of the Netwars competition sponsored by SANS. This “capture the flag” competition combines both offensive and defensive actions to test the security analyst’s skills. The advanced research done by C.O.R.E. will directly benefit Alert Logic’s products and services, but will also serve the greater security community as evidenced by the team’s discovery of vulnerabilities such as the Facebook vulnerability that could have led to exposure of private information or defacement of user pages.
“Assembling a team to focus on research and emerging threats is a natural progression for Alert Logic,” said Norman. “We are combining their world class security analyst credentials with our unique access to threat information from Alert Logic appliances deployed around the world. They are collecting log, threat and vulnerability data that we can correlate and trend together to drive unique insight to improve the security posture of our customers and partners.”
Additional Resources Available: Blog @alertlogic on Twitter LinkedIn
About Alert Logic Alert Logic, the leader in security and compliance solutions for the cloud, provides Security-as-a-Service for on-premises, cloud, and hybrid infrastructures, delivering deep security insight and continuous protection for customers at a lower cost than traditional security solutions. Fully managed by a team of experts, the Alert Logic Security-as-a-Service solution provides network, system and web application protection immediately, wherever your IT infrastructure resides. Alert Logic partners with the leading cloud platforms and hosting providers to protect over 3,300 organizations worldwide. Built for cloud scale, the Alert Logic patented platform stores petabytes of data, analyses over 400 million events and identifies over 50,000 security incidents each month, which are managed by its 24×7 Security Operations Center. Alert Logic, founded in 2002, is headquartered in Houston, Texas, with offices in Seattle, Dallas, Cardiff, Belfast and London. For more information, please visit www.alertlogic.com.