McAfee Network User Behavior Analysis

McAfee Network User Behavior Analysis

Continuous, cost-effective visibility inside your network

Overview

McAfee Network User Behavior Analysis gives you a continuous, real-time view of user behavior and activity across your complex network environment. It replaces manual detection efforts, such as log analysis, with automated discovery and analysis based on existing network flow data, as well as application and identity data to deliver reliable results and a clear course of action.

With Network User Behavior Analysis, you get:

Intuitive, accurate information — In a single view, Network User Behavior Analysis shows you the actual user, group, and role associated with each action on the network. It correlates behavior with your existing security policies to show violations. It gives you this information in real time, not after the fact, so you can pinpoint potential risks and make decisions quickly and decisively.

Lowered costs and enhanced security — By automating labor-intensive detection and analysis tasks, Network User Behavior Analysis reduces the cost of keeping your network safe from risks, including insider threats.

Simplified compliance and auditing — Network User Behavior Analysis makes audit preparation faster and easier with ongoing monitoring to ensure compliance with PCI DSS, FISMA, SOX, HIPAA, and GLBA.

Features & Benefits

Reduce risk

Know what users are doing inside your network at all times. Compare user activity against security and business policies to minimize security risks and legal liability. Network User Behavior Analysis complements access control solutions by verifying that users are not bypassing access controls, and helps monitor post-connect user behavior.

Increase efficiency and lower costs

Automate labor-intensive discovery and analysis of what users are actually doing to save time and money. With more accurate and tamperproof information from Network User Behavior Analysis, you can identify and respond to threats more quickly and with greater confidence. Since it provides an intuitive, complete view of who is doing what and where across your network, Network User Behavior Analysis is proven to reduce the cost, effort, and risk associated with network planning and changes.

Enhance user-identity capabilities

Get detailed information about the users who access business-critical applications. Dynamic integration with user directories provides each user’s name, role, and policy context. Any changes made in the directory automatically filter down to Network User Behavior Analysis Monitors.

Simplify compliance and auditing

Make audit preparation faster and easier with ongoing monitoring to ensure compliance with PCI DSS requirements, as well as FISMA, SOX, HIPAA, and GLBA regulations.

Deploy cost-effective, scalable monitoring

Enable out-of-band monitoring with no network reconfiguration. Network User Behavior Analysis Monitor utilizes packet capture (pcap) and network flow data, requires no agents, no application integration, and no recoding. For identity-based monitoring, Network User Behavior Analysis builds on the identity and role information in your existing directories.

Leverage your existing infrastructure

Integrate Network User Behavior Analysis quickly and easily with Active Directory and LDAP-based directories, network routers and switches, non-Microsoft Windows identity clients like Centrify, and flow-based data from Cisco and Juniper.

System Requirements

These are minimum system requirements only. Actual requirements will vary depending on your environment. Technical information provided by Intel. Specifications may change at any time and without prior notice.

McAfee Network User Behavior Analysis Monitor Appliance

  • Technical specifications
    • 1 Intel Xeon 5130, 2 GHz, 1,333 MHz, 4-MB cache, dual-core CPU (for Monitor SE, Flow Monitor SE, and Flow Monitor: 1 Xeon 5150, 2.66-GHz CPU)
    • Two 250 GB, 32-MB cache, 7.5K RPM SATA II, 3.5" hard drives
    • 4 GB RAM
  • Power & BTU specifications
    • Max. surge amps = 9.5
    • Max. running amps = 8.5
    • Avg. running amps = 6.25
    • Watts = 750
    • BTU/hr. = 2,550
  • Dimensions
    • Rack-mountable 1U device
    • 17"W x 28 1/2"D x 1 3/4"H
  • Weight
    • 30 lbs.
  • Temperature
    • Operating temperature: 50°–90° F / 10°–35° C (maximum change rate not to exceed 10° C per hour)
    • Non-operating temperature: -40°–70° C
    • Non-operating humidity: 90%, non-condensing at 28° C
  • Compliance
    • UL60950 – CSA 60950 (USA/Canada)
    • EN60950 (Europe)
    • IE60950 (International)
    • CE – Low-voltage Directive 73/23/EEE (Europe)
  • Certification
    • Common Criteria EAL 3 Certified
    • U.S. Department of Defense accreditations for operating in SIPRNet, NIPRNet, and JWICS

McAfee Network User Behavior Analysis Control Center Appliance

  • Technical specifications
    • 1 Intel Xeon 5150, 2.66 GHz, 1,333 MHz, 4-MB cache, dual-core CPU
    • Two 150 GB, 16-MB cache, 10K RPM SATA hard drives
    • 4-GB RAM
  • Power & BTU specifications
    • Max. surge amps = 9.5
    • Max. running amps = 8.5
    • Avg. running amps = 6.25
    • Watts = 750
    • BTU/hr. = 2,550
  • Dimensions
    • Rack-mountable 1U device
    • Dimensions: 17"W x 28 1/2"D x 1 3/4"H
  • Weight
    • 30 lbs.
  • Temperature
    • Operating temperature: 50°–90° F / 10°–35° C (maximum change rate not to exceed 10° C per hour)
    • Non-operating temperature: -40°–70° C
    • Non-operating humidity: 90%, non-condensing at 28° C
  • Compliance
    • UL60950 – CSA 60950 (USA/Canada)
    • EN60950 (Europe)
    • IE60950 (International)
    • CE – Low-voltage Directive 73/23/EEE (Europe)
  • Certification
    • Common Criteria EAL 3 Certified
    • U.S. Department of Defense accreditations for operating in SIPRNet, NIPRNet, and JWICS

Resources

Data Sheets

McAfee Network User Behavior Analysis

For a technical summary on the McAfee product listed above, please view the product data sheet.

McAfee Network User Behavior Analysis Studio

For a technical summary on the McAfee product listed above, please view the product data sheet.

Solution Briefs

User Behavior Analysis: Gaining Real-Time Cost-Effective Visibility into Who Is Doing What, Where on Your Network

McAfee Network User Behavior Analysis' automated, identity-based monitoring improves visibility into your network, reduces risk, and eases compliance.

Community

Blogs

  • Government Agencies Should Turn to CDM During 30-Day Sprint
    Tom Gann - June 29, 2015

    The fallout from the OPM breach continues with news that clearance information may have been stolen and that more than 10 million federal employee records may have been breached. In response, the White House has ordered every agency to engage in a “30 day sprint” to shore up and bolster their defensive cybersecurity capabilities. During […]

    The post Government Agencies Should Turn to CDM During 30-Day Sprint appeared first on McAfee.

  • Hackers Gonna Hack! Here’s How to Fight Back
    Paul Zimski - June 23, 2015

    Nobody ever said network defense was easy. If you’re in charge of protecting your enterprise’s digital assets, the one thing you always seem to be fighting is time. Even after you have read every security analyst report on the market and deployed best-of-breed security products, if your IT security and data protection tools don’t work […]

    The post Hackers Gonna Hack! Here’s How to Fight Back appeared first on McAfee.

  • Securing Private and Hybrid Clouds
    Raja Patel - June 5, 2015

    As-a-service models offer huge opportunities, but also complicate security. Sometimes the easiest way to migrate to a new architectural modelis to let others do the work, others who are experts in their field. This has given rise to many as-a-service models throughout the industry and across the entire technology stack, from software to infrastructure. While […]

    The post Securing Private and Hybrid Clouds appeared first on McAfee.

  • ESG Lab Spotlight on SIEM
    Karl Klaessig - June 2, 2015

    It’s no secret that today’s attack surface is growing. Everywhere you turn there’s news of a new breach or targeted attack. Look around you – is your mobile device nearby? The answer is most likely yes. In a world of connected devices and people on the go, our affinity for multi-tasking is in turn causing […]

    The post ESG Lab Spotlight on SIEM appeared first on McAfee.

  • Did a Hacker Take Control of a Commercial Airplane?
    Gary Davis - May 20, 2015

    As the popular saying goes, what goes up must come down. And if you’re on a flight, both elements should be done in a controlled manner. Thankfully, we have a lot of people working across industries to make sure that all flights take off and land safely — and that includes the cybersecurity industry. But […]

    The post Did a Hacker Take Control of a Commercial Airplane? appeared first on McAfee.