“THE JASK ASOC PLATFORM IS MODERNIZING SECURITY OPERATIONS, ENABLING ANALYSTS TO STAY AHEAD OF THE EVER-EVOLVING ATTACKER.”
– Greg Martin, Co-Founder and CEO, JASK
JASK provides security analysts with enhanced visibility to seamlessly monitor on-premises and heterogeneous multi-cloud infrastructures and thoroughly understand the impact and context of an attack. The JASK ASOC platform fuses intelligence and automation to perform security analyst workflows and automatically triage alerts—increasing human efficiencies and enabling analysts to focus on higher-value security functions.
JASK Signals are a collection of alerts, identified through pattern and threat intelligence matching, correlation logic, statistical evaluation, and anomaly detection.
JASK Insights represent the intelligent, correlated, and prioritized clustering of JASK Signals and other data enrichments for analysts to immediately investigate. JASK Insights dramatically decrease validation and investigation times by presenting an automatically generated storyline of potential security incidents containing all of the relevant context analysts require to make rapid response decisions.
JASK Adaptive Signal Clustering (ASC) Engine
JASK Insights are generated by the JASK ASC Engine using proprietary algorithms with heuristics to group related JASK Signals from several weeks back to those occurring in real-time. This provides analysts with the identification and context of an attack and its movements, including incidents that often fly below the radar. ASC Engine algorithms are continuously improved through a closed-loop feedback model, driven by user interactions. As JASK customers identify patterns, validate Signals and Insights, or add new searches—confidence levels increase, and all users benefit.
CLOUD-NATIVE PLATFORM ARCHITECTURE
JASK ASOC platform employs a modern micro-services architecture natively built in Amazon Web Services (AWS) for true elasticity, automated scalability, endless storage, and virtually unlimited processing power. JASK’s flexible cloud-native platform enables JASK to provide unlimited data ingestion and processing without a cost penalty to customers. This lowers total cost of ownership and delivers rapid time to value.
As a true SaaS solution, new JASK application and platform capabilities and updates are delivered quickly and not limited to your ability to schedule and implement an upgrade to your systems. This approach eliminates planned outages along with hardware and software maintenance normally associated with on-premises SIEM solutions.