Introducing RAVINN
Real Artificial Very Intelligent Neural Network
Why RAVINN?
Why do YOU need an Intelligent SIEM/SOAR solution for your business?
Protect Connected Devices (Internet of Things
When business-critical systems are connected to a network, the risk of malicious activity increases.
What will the cost of downtime of these devices mean to your organization – loss of production? Loss of life? Loss of reputation towards your customers? Know the Risks!
Financial Risk of Not Paying Attention to Cybersecurity
Wannacry Virus – Knocked out over 200,000 devices in 150 Countries at a cost of cost of $4-8Billion.
NotPetya Ransomware Attack – $10 Billion
Nearly 80% of organizations admit that they have experienced at least one security breach in the last year, and nearly 50% have experienced one in the last six months
148%
Ransomware attacks rose 148% in March of 2020 as compared to 2019.
33%
The average ransomware payment rose by 33% to $111,605 as compared to Q4 2019.
62%
Businesses worldwide experienced an increase of cyber attacks by 62% in 2018. According to a study conducted by IBM, the average cyber breach cost $3.1 million when you factor in the cost of ransoms paid, remediation, and lost business.
68%
Business leaders feel their cyber security risk & needs are increasing by 68%.
5%
Only 5% of businesses have their data properly secured and protected.
PROBLEM: There’s too much noise…
Noise coming out of the SIEM is the most overwhelming issue for security analysts
What is Noise and where does it come from?
Noise is the unnecessary or useless log information that is generated by all devices in a network.
Personal Computers, Servers, Security Devices, etc. all produce event logs that contain both relevant and irrelevant events/alerts. Irrelevant alerts are events such as a mouse click or other mundane process. These outnumber the relevant alerts by >10,000/1 creating the “noise” that must be inspected by security analysts to find information that is relevant to their company’s cybersecurity.
Solution: SIEM – SOAR – RAVINN
SIEM solutions gather and sort alerts from network devices. The number of alerts is reduced but still not manageable.
SOAR solutions further triage alerts, removing more “false positives”, and automate security processes for security teams.
RAVINN utilizes Artificial Intelligence to further reduce the number of alerts and intelligently orchestrate and automate security, significantly reducing workloads for security teams.
SOLUTION: RAVINN Intelligent SOAR
There aren’t enough security analysts in the world to solve this problem. This will only be solved by artificial intelligence that can REDUCE the number of total alerts by >80%.
01
Flexibility
Just about any organization can add a free “open-source” SIEM solution to their cybersecurity tool kit. Unfortunately, interpretation of the information that comes out of a SIEM must be managed by an internal Security Team or a contracted Secure Operations Center (SOC) using an expensive SOAR solution and expensive security analysts. Otherwise, the information produced by the SIEM is useless.
02
Affordable
Enterprise businesses, that can afford to have a security team or SOC, still struggle to identify and resolve real threats due to the lack of available security analysts. And SMBs normally can’t afford internal security analysts or contracting security management out to a SOC.
03
Performance
The AI in RAVINN will change all of that. RAVINN will be available to all enterprise businesses to reduce human workload. And adding RAVINN to our own SOC will reduce labor costs considerably and make SOC services available to SMBs at an affordable rate.
SOLUTION: Intelligent Automation
Intelligent Automation
The Future SOC
An “intelligent” solution continually building neural network that performs many of the tasks traditionally performed by humans, only faster and with greater precision.
RAVINN AI aggregates data across networks, applications and endpoints into a single, scalable neural network for more efficient and accurate detection and prevention of cyber attacks.
Reduce Workloads
Prevent “Security Analyst Burnout”
Reduce the number of low-fidelity SIEM generated alerts through intelligent triaging.
RAVINN AI (Real Artificial Very Intelligent Neural Network) reduces the number of alerts by 70-80%.
By improving the quality of alerts, organizations can start reducing the number of security analyst, prevent alert fatigue and increase their security posture.
RAVINN
RAVINN Builds SOC’s on Steroids
The AI in RAVINN doesn’t burn out… It becomes more powerful as more and more data is pushed into it.
It empowers SOC personnel to focus only on those alerts that need a human’s attention and action.
Let RAVINN take you under its wings and protect your organization from cyber threats.
SOLUTION: RAVINN
Real Artificial Very Intelligent Neural Network
RAVINN: The Evolution
1st iteration of RAVINN ATP (Alert Triage & Prioritization) addresses the issue of “too much noise” by intelligently Triaging SIEM alerts. The AI can parse and eliminate approximately 70-80% of the alerts generated by the SIEM. This will immediately begin to have a positive effect on analyst efficiency and burnout.
As the First iteration of RAVINN begins to stabilize the SOC industry, by lessening the need for more security analysts and making the existing analysts more efficient;
2nd iteration of RAVINN will have the ability to integrate with the RAVINN EP. This integration creates the most effective and efficient SOAR/Endpoint Protection against Ransomware.
Subsequent RAVINN iterations will regularly add new intelligent features.
Working together with security professionals, RAVINN will smartly introduce intelligent versions of these SOAR tools:
- Incident Alerting System
- Threat Intelligence Integration
- Intelligent Security Orchestration
- Intelligent Compliance Reporting (SEC, HIPPA, FINRA, etc…)
- Automate Threat Hunting
- Full Multi-Tenancy
- Improving IOC Automation
- Intelligent Vulnerability Management Automation
- Intelligent Automation of Common Security Tasks
SOLUTION: RAVINN iEP
Intelligent Endpoint Protection
The major component of Ransomware is encryption. Stop the encryption process and you stop the Ransomware.
RAVINN EP is an intelligent solution that detects and kills the encryption process associated with nearly all Ransomware threats.
When RAVINN EP is integrated with RAVINN’s Neural Network, the solution creates bi-directional learning/teaching with the RAVINN AI and intelligently detects and stops Ransomware encryption. The neural network collects/shares intelligence with any RAVINN EP connected to the RAVINN network, providing immediate updates on emerging threats and attacks.
THE AI MAKES ALL THE DIFFERENCE
Note the difference in the “Level 12 or above Alerts“ (in RED). The RAVINN AI reduced the number of critical alerts from 5137 to just 177. This means there are 4,960 less alerts for security analysts to review. The SOC Team can quickly and effectively examine these 177 alerts in 1/100th the time.
The AI also correctly interpreted “Authentication Success & Failure” (in RED & GREEN), a critical element in identifying attacks, 9,107,636 to 2 & 345 to 0.
This is just the tip of the iceberg… The AI is creating an entire Neural Network to identify, address, and remediate threats!
2545 SPRING ARBOR RD. SUITE 100
JACKSON, MI 49203
RAVINN
Real Artificial Very Intelligent Neural Network
A product of Barbican, LLC