Managed Security Service Benefits from Deep Packet Visibility

• Cybersecurity & Privacy - Network Security
• Networks & Connectivity - Network Management & Analysis Software

• Telecommunications

• Business Operation

• Cybersecurity

• Cybersecurity Services
• System Integration

Mnemonic, a Norway-based company, provides 24/7 monitoring services from European based SOCs staffed with incident response teams. At the core of the Mnemonic’s solution is their proprietary platform, Argus. Argus is used to deliver its Managed Defense service that is designed to rapidly detect, analyze and respond to security threats on a large scale. Argus provides the advanced threat prevention ecosystem needed to see the big threat picture in real-time and protect customers against advanced persistent threats, zero days and targeted attacks. Any managed security service depends on on-going view of the customer’s network and the efficient functioning on the underlying security monitoring infrastructure. Employee time must be also spent efficiently, ideally mostly focused on higher-value activities such as threat investigation and mitigation, rather than infrastructure management. Mnemonic serves large enterprises and the SMB market. For enterprises with large and complex networks, ensuring consistent and enterprise-wide packet flow visibility is a challenge.

Mnemonic is a Norway-based company that provides 24/7 monitoring services from European based Security Operations Centers (SOCs) staffed with incident response teams. The company serves large enterprises and the SMB market. At the core of Mnemonic’s solution is their proprietary platform, Argus. Argus is used to deliver its Managed Defense service that is designed to rapidly detect, analyze and respond to security threats on a large scale. Argus provides the advanced threat prevention ecosystem needed to see the big threat picture in real-time and protect customers against advanced persistent threats, zero days and targeted attacks. The company's goal is to ensure smooth service delivery and spend less time in infrastructure management and more in threat investigation.

Mnemonic's approach integrates packet flow management at the onset of the customer engagement. This insures deep visibility into the customer’s network, enhancing both customer’s network security and Mnemonic’s value proposition. The Mnemonic team evaluated several network monitoring switches, and opted for the NETSCOUT nGenius Packet Flow Switch (PFS) series, specifically nGenius 2204 packet flow switch or nGenius 4204 packet flow switch models, depending on customer requirement. The appliances are a part of the infrastructure that the company recommends for on-site deployment, alongside passive security devices, such as IDS (intrusion detection system) and SEIM (security event and incident management). The appliances aggregate traffic from multiple network segments and forwards copies of the traffic to the security devices for inspection. nGenuis PFS performs loadbalancing, filtering and speed conversion, delivering the right packet flows, at the right time and in the form that the security devices require.

• The nGenius PFS solution reduces the time required to manage customer’s security monitoring infrastructure, with many functions, such as health-checking and load-balancing, performed by the packet flow switch.
• nGenius PFS can automatically rebalance the load if a particular device in a group is not functioning properly or needs to be taken out for maintenance. This allows Mnemonic to focus its personnel on the delivery of the managed service, rather than on managing infrastructure.
• Many of Mnemonic’s customers are migrating from passive to active monitoring; the support for active (inline) security is thus a key requirement. The nGenius 4204 packet flow switch and nGenius 2204 packet flow switch devices have built-in support for inline deployments, such as network bypass, conditional triggers and advanced health-checking. With nGenius as part of the deployment, the transition from passive to active monitoring is straightforward and does not require that the customers re-architecture their visibility plane.