SlideShare a Scribd company logo

Get Started with Cloudera’s Cyber Solution

Cloudera, Inc.
Cloudera, Inc.

Cloudera's cybersecurity solution addresses challenges in data management by offering a versatile platform that supports cloud-native and on-premise analytics, allowing integration with multiple sources while enhancing detection of advanced threats. The solution includes capabilities for managing and processing large volumes of security data using open data models and various analytic techniques. Streamsets and Arcadia Data provide tools for automated data ingestion and visualization, enabling real-time insights and response to cyber threats.

Technology
1 of 26
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
1© Cloudera, Inc. All rights reserved. Getting Started with Cloudera's Cyber Solution
2© Cloudera, Inc. All rights reserved. 1,000,000,000,000+ [ events per day ]
3© Cloudera, Inc. All rights reserved. Many CISO’s Have A Data Platform Challenge Security Data Storage Layer Data Governance Network Application SIEM (Signature and Correlation) Splunk (Search, Descriptive Analytics) Endpoint User Threat Intelligence 1. Storage costs limit visibility 2. Analytic costs limit insight 3. Analytic techniques insufficient to detect advanced threats 4. Investigation is a complicated, time consuming process Expensive, Proprietary, Stove Piped Archived/ Tape /Dev/ Null
4© Cloudera, Inc. All rights reserved. Advantages of Cloudera’s Platform for Cyber Cloud-Native & On-Premise Go Beyond Basic Analytics • Share data across multiple analytic processing engines • Simple search, SQL, Python, R, Scala Data Flexibility • Faster, more agile, full- fidelity data acquisition • Data portability: Open data model and open storage Cost-Effective Scalability • Elastic scale on-prem or in the cloud • Cloud-native pay-per-use and transience • Proven at big data scale Hybrid • Runs across multi-clouds & on- prem • Multi-storage over S3, HDFS, Kudu, Isilon, DSSD, etcShared Data
5© Cloudera, Inc. All rights reserved. Optimizing a SIEM with Cloudera PackagedApplications Analytic Processing (Spark, Impala, Solr) Management, Governance,Security (ClouderaManager,Cloudera Navigator) Data and Analytic Management Cloudera Data Hub Open Source Custom Apache Spot Open Data Models (HDFS, Hbase, Kudu) Ingestion (StreamSets) (On premise or Cloud) SIEM Sources Threat Intelligence Network User Endpoint
6© Cloudera, Inc. All rights reserved. Support multiple workloads with community defined Open Data Models Endpoint User Network DIVERSE DATA SOURCES SINGLE ACCESS Source: Momentum Partners Cybersecurity Snapshot April 2016
7© Cloudera, Inc. All rights reserved. A community approach to fighting cyber threats.
8© Cloudera, Inc. All rights reserved. Many applications on one shared data set and architecture Visualization & machine learning applications can share common data set & infrastructure CustomPackaged Open source is developing out machine learning (e.g. network threat detection) Open Source Build custom applications & analytics using Cloudera without having to buy new infrastructure
9© Cloudera, Inc. All rights reserved. Demo of Open Source Application • Setup ingestion pipelines from Spot community for Centrify, Windows, and Qualysis data • Create open data model tables • Use Cloudera Manager for StreamSets deployment • Store data in HDFS and prep for Impala queries • Install and deploy Arcadia Retail App from Spot community • Query data that resides in the open data model for ad-hoc analysis
Feeding a Cybersecurity Data Lake with StreamSets
Who is StreamSets? Enterprise Data DNA StreamSets Mission ~1,000,000 downloads 25% of the Fortune 500 Top-tier Investors Commercial Customers Across Verticals Empower enterprises to harness their data in motion. Products StreamSets Dataflow Performance Manager™ (DPM), StreamSets Control Hub (SCH), StreamSets Data Collector™ (SDC - open source), SDC Edge Strong Partner Ecosystem Open Source Success
Threats Happen in Real-Time Ready data for analysis in time to identify and stop threats in progress Data from varied data sources must integrate into the Open Data Model with zero code Be prepared to deal with data drift, a frequent risk to data ingestion efforts
StreamSets in a Cybersecurity Architecture
© 2017 StreamSets, Inc. All rights reserved. StreamSets Data Operations Platform
Benefits of StreamSets for Cyber Adaptable, change- resistant data ingest Faster time to insight and response Complete operational visibility and control
Arcadia Data. Proprietary and Confidential Getting Started with Arcadia Data and Cloudera’s Cyber Solution Tadd Wood, Sr. Data Scientist January 24, 2018
Arcadia Data. Proprietary and Confidential Ingestion Data Platform Analytics • Setup ingestion pipelines from Spot community for Centrify, Windows, and Qualys data • Create open data model tables • Use Cloudera Manager for StreamSets deployment • Store data in HDFS and prep for Impala queries • Install and deploy Arcadia Dashboards from Spot community • Query data that resides in the Open Data Model for ad-hoc analysis
Arcadia Data. Proprietary and Confidential Arcadia Visualization Engine The First Native Visual Analytics Platform for Big Data Arcadia Analytic Platform (Smart Acceleration™) On-Premises Drag-and-drop Visual Analytics & Dashboards HybridCloud Custom Data Applications BIG DATA OS Distributed execution, data storage, metadata, security IN-CLUSTER ANALYTICS ENGINE Scales linearly with cluster for speed and easier management WEB-BASED INTERFACE Drag & drop interface for visual analytics & app workflow DataPlatform
Arcadia Data. Proprietary and Confidential Incident Response 19 • Quickly drill across endpoints, users, and network • Real-time dashboards for critical metrics • Easily embed results into case management tools Network Endpoint User
Arcadia Data. Proprietary and Confidential Forensic Analysis 20 • Fast filtering across a well known set of attributes • Visuals that make time series analysis simpler • Graph visualization to understand relationships
Arcadia Data. Proprietary and Confidential Threat Hunting 21 • Integrate with machine learning workflows and outputs • Full access to your raw events • Ad-hoc data exploration
Arcadia Data. Proprietary and Confidential Run scripts to set up the Open Data Model tables for importing cybersecurity-related data. Download Arcadia Instant. https://www.arcadiadata.com/product/instant Use the example dashboards with Arcadia Instant. To Get Started with Arcadia Data on Cybersecurity
Arcadia Data. Proprietary and Confidential Walkthrough and Demo
Arcadia Data. Proprietary and Confidential To get started after this webinar, go here: https://www.arcadiadata.com/cyber Visit that page to get links for: ▪ Downloading Arcadia Instant ▪ Spot ODM Setup ▪ Spot Dashboards Summary of Our Cybersecurity Solution
25© Cloudera, Inc. All rights reserved. Q&A Learn more at cloudera.com/cybersecurity
26© Cloudera, Inc. All rights reserved. Thank you

More Related Content

What's hot (20)

PPTX
Webinar: DataStax and Microsoft Azure: Empowering the Right-Now Enterprise wi...
DataStax
 
PPTX
Increase your ROI with Hadoop in Six Months - Presented by Dell, Cloudera and...
Cloudera, Inc.
 
PPTX
Is your big data journey stalling? Take the Leap with Capgemini and Cloudera
Cloudera, Inc.
 
PPTX
Building a Modern Analytic Database with Cloudera 5.8
Cloudera, Inc.
 
PPTX
Put Alternative Data to Use in Capital Markets

Cloudera, Inc.
 
PPTX
Webinar: How Active Everywhere Database Architecture Accelerates Hybrid Cloud...
DataStax
 
PDF
How to Evaluate Cloud Databases for eCommerce
DataStax
 
PPTX
The Transformation of your Data in modern IT (Presented by DellEMC)
Cloudera, Inc.
 
PPTX
Designing Fault-Tolerant Applications with DataStax Enterprise and Apache Cas...
DataStax
 
PPTX
Engaging with Cloudera & Morning Wrap Up
Cloudera, Inc.
 
PDF
How to Power Innovation with Geo-Distributed Data Management in Hybrid Cloud
DataStax
 
PPTX
Introducing the data science sandbox as a service 8.30.18
Cloudera, Inc.
 
PPTX
Cloudera Data Impact Awards 2021 - Finalists
Cloudera, Inc.
 
PPTX
How to get Real-Time Value from your IoT Data - Datastax
DataStax
 
PPTX
Data Science in Enterprise
Josh Yeh
 
PPTX
Transforming Insurance Analytics with Big Data and Automated Machine Learning

Cloudera, Inc.
 
PPTX
From Insight to Action: Using Data Science to Transform Your Organization
Cloudera, Inc.
 
PPTX
Advanced Analytics for Investment Firms and Machine Learning
Cloudera, Inc.
 
PPTX
Extending Cloudera SDX beyond the Platform
Cloudera, Inc.
 
PPTX
Driving Better Products with Customer Intelligence

Cloudera, Inc.
 
Webinar: DataStax and Microsoft Azure: Empowering the Right-Now Enterprise wi...
DataStax
 
Increase your ROI with Hadoop in Six Months - Presented by Dell, Cloudera and...
Cloudera, Inc.
 
Is your big data journey stalling? Take the Leap with Capgemini and Cloudera
Cloudera, Inc.
 
Building a Modern Analytic Database with Cloudera 5.8
Cloudera, Inc.
 
Put Alternative Data to Use in Capital Markets

Cloudera, Inc.
 
Webinar: How Active Everywhere Database Architecture Accelerates Hybrid Cloud...
DataStax
 
How to Evaluate Cloud Databases for eCommerce
DataStax
 
The Transformation of your Data in modern IT (Presented by DellEMC)
Cloudera, Inc.
 
Designing Fault-Tolerant Applications with DataStax Enterprise and Apache Cas...
DataStax
 
Engaging with Cloudera & Morning Wrap Up
Cloudera, Inc.
 
How to Power Innovation with Geo-Distributed Data Management in Hybrid Cloud
DataStax
 
Introducing the data science sandbox as a service 8.30.18
Cloudera, Inc.
 
Cloudera Data Impact Awards 2021 - Finalists
Cloudera, Inc.
 
How to get Real-Time Value from your IoT Data - Datastax
DataStax
 
Data Science in Enterprise
Josh Yeh
 
Transforming Insurance Analytics with Big Data and Automated Machine Learning

Cloudera, Inc.
 
From Insight to Action: Using Data Science to Transform Your Organization
Cloudera, Inc.
 
Advanced Analytics for Investment Firms and Machine Learning
Cloudera, Inc.
 
Extending Cloudera SDX beyond the Platform
Cloudera, Inc.
 
Driving Better Products with Customer Intelligence

Cloudera, Inc.
 

Similar to Get Started with Cloudera’s Cyber Solution (20)

PPTX
Get started with Cloudera's cyber solution
Cloudera, Inc.
 
PPTX
How Data Drives Business at Choice Hotels
Cloudera, Inc.
 
PPTX
IoT-Enabled Predictive Maintenance
Cloudera, Inc.
 
PPTX
Part 3: Models in Production: A Look From Beginning to End
Cloudera, Inc.
 
PPTX
How to Build Multi-disciplinary Analytics Applications on a Shared Data Platform
Cloudera, Inc.
 
PPTX
Cloudera Analytics and Machine Learning Platform - Optimized for Cloud
Stefan Lipp
 
PPTX
Enabling Next Gen Analytics with Azure Data Lake and StreamSets
Streamsets Inc.
 
PPTX
Leveraging the Cloud for Big Data Analytics 12.11.18
Cloudera, Inc.
 
PPTX
Presentacion de solucion cloud de navegacion segura
RogerChaucaZea
 
PPTX
High-Performance Analytics in the Cloud with Apache Impala
Cloudera, Inc.
 
PPTX
Cloudera Big Data Integration Speedpitch at TDWI Munich June 2017
Stefan Lipp
 
PPTX
Build Big Data Enterprise Solutions Faster on Azure HDInsight
DataWorks Summit/Hadoop Summit
 
PPTX
Simplifying Real-Time Architectures for IoT with Apache Kudu
Cloudera, Inc.
 
PPTX
Supercharge Splunk with Cloudera

Cloudera, Inc.
 
PDF
Crafting highly scalable and performant Modern Data Platforms
Sameer Paradkar
 
PPTX
Preparing for the Cybersecurity Renaissance
Cloudera, Inc.
 
PPTX
Big data journey to the cloud 5.30.18 asher bartch
Cloudera, Inc.
 
PPTX
Build a modern platform for anti-money laundering 9.19.18
Cloudera, Inc.
 
PPTX
Turning Data into Business Value with a Modern Data Platform
Cloudera, Inc.
 
PDF
Implement a Universal Data Distribution Architecture to Manage All Streaming ...
Timothy Spann
 
Get started with Cloudera's cyber solution
Cloudera, Inc.
 
How Data Drives Business at Choice Hotels
Cloudera, Inc.
 
IoT-Enabled Predictive Maintenance
Cloudera, Inc.
 
Part 3: Models in Production: A Look From Beginning to End
Cloudera, Inc.
 
How to Build Multi-disciplinary Analytics Applications on a Shared Data Platform
Cloudera, Inc.
 
Cloudera Analytics and Machine Learning Platform - Optimized for Cloud
Stefan Lipp
 
Enabling Next Gen Analytics with Azure Data Lake and StreamSets
Streamsets Inc.
 
Leveraging the Cloud for Big Data Analytics 12.11.18
Cloudera, Inc.
 
Presentacion de solucion cloud de navegacion segura
RogerChaucaZea
 
High-Performance Analytics in the Cloud with Apache Impala
Cloudera, Inc.
 
Cloudera Big Data Integration Speedpitch at TDWI Munich June 2017
Stefan Lipp
 
Build Big Data Enterprise Solutions Faster on Azure HDInsight
DataWorks Summit/Hadoop Summit
 
Simplifying Real-Time Architectures for IoT with Apache Kudu
Cloudera, Inc.
 
Supercharge Splunk with Cloudera

Cloudera, Inc.
 
Crafting highly scalable and performant Modern Data Platforms
Sameer Paradkar
 
Preparing for the Cybersecurity Renaissance
Cloudera, Inc.
 
Big data journey to the cloud 5.30.18 asher bartch
Cloudera, Inc.
 
Build a modern platform for anti-money laundering 9.19.18
Cloudera, Inc.
 
Turning Data into Business Value with a Modern Data Platform
Cloudera, Inc.
 
Implement a Universal Data Distribution Architecture to Manage All Streaming ...
Timothy Spann
 
Ad

More from Cloudera, Inc. (20)

PPTX
Partner Briefing_January 25 (FINAL).pptx
Cloudera, Inc.
 
PPTX
Edc event vienna presentation 1 oct 2019
Cloudera, Inc.
 
PPTX
Machine Learning with Limited Labeled Data 4/3/19
Cloudera, Inc.
 
PPTX
Data Driven With the Cloudera Modern Data Warehouse 3.19.19
Cloudera, Inc.
 
PPTX
Introducing Cloudera DataFlow (CDF) 2.13.19
Cloudera, Inc.
 
PPTX
Introducing Cloudera Data Science Workbench for HDP 2.12.19
Cloudera, Inc.
 
PPTX
Shortening the Sales Cycle with a Modern Data Warehouse 1.30.19
Cloudera, Inc.
 
PPTX
Leveraging the cloud for analytics and machine learning 1.29.19
Cloudera, Inc.
 
PPTX
Modernizing the Legacy Data Warehouse – What, Why, and How 1.23.19
Cloudera, Inc.
 
PPTX
Modern Data Warehouse Fundamentals Part 3
Cloudera, Inc.
 
PPTX
Modern Data Warehouse Fundamentals Part 2
Cloudera, Inc.
 
PPTX
Modern Data Warehouse Fundamentals Part 1
Cloudera, Inc.
 
PPTX
Federated Learning: ML with Privacy on the Edge 11.15.18
Cloudera, Inc.
 
PPTX
Analyst Webinar: Doing a 180 on Customer 360
Cloudera, Inc.
 
PPTX
Cloudera SDX
Cloudera, Inc.
 
PPTX
Introducing Workload XM 8.7.18
Cloudera, Inc.
 
PPTX
Spark and Deep Learning Frameworks at Scale 7.19.18
Cloudera, Inc.
 
PPTX
Cloud Data Warehousing with Cloudera Altus 7.24.18
Cloudera, Inc.
 
PPTX
How Cloudera SDX can aid GDPR compliance
Cloudera, Inc.
 
PPTX
When SAP alone is not enough
Cloudera, Inc.
 
Partner Briefing_January 25 (FINAL).pptx
Cloudera, Inc.
 
Edc event vienna presentation 1 oct 2019
Cloudera, Inc.
 
Machine Learning with Limited Labeled Data 4/3/19
Cloudera, Inc.
 
Data Driven With the Cloudera Modern Data Warehouse 3.19.19
Cloudera, Inc.
 
Introducing Cloudera DataFlow (CDF) 2.13.19
Cloudera, Inc.
 
Introducing Cloudera Data Science Workbench for HDP 2.12.19
Cloudera, Inc.
 
Shortening the Sales Cycle with a Modern Data Warehouse 1.30.19
Cloudera, Inc.
 
Leveraging the cloud for analytics and machine learning 1.29.19
Cloudera, Inc.
 
Modernizing the Legacy Data Warehouse – What, Why, and How 1.23.19
Cloudera, Inc.
 
Modern Data Warehouse Fundamentals Part 3
Cloudera, Inc.
 
Modern Data Warehouse Fundamentals Part 2
Cloudera, Inc.
 
Modern Data Warehouse Fundamentals Part 1
Cloudera, Inc.
 
Federated Learning: ML with Privacy on the Edge 11.15.18
Cloudera, Inc.
 
Analyst Webinar: Doing a 180 on Customer 360
Cloudera, Inc.
 
Cloudera SDX
Cloudera, Inc.
 
Introducing Workload XM 8.7.18
Cloudera, Inc.
 
Spark and Deep Learning Frameworks at Scale 7.19.18
Cloudera, Inc.
 
Cloud Data Warehousing with Cloudera Altus 7.24.18
Cloudera, Inc.
 
How Cloudera SDX can aid GDPR compliance
Cloudera, Inc.
 
When SAP alone is not enough
Cloudera, Inc.
 
Ad

Recently uploaded (20)

PDF
Building Real-Time Digital Twins with IBM Maximo & ArcGIS Indoors
Safe Software
 
PDF
What Makes Contify’s News API Stand Out: Key Features at a Glance
Contify
 
DOCX
Python coding for beginners !! Start now!#
Rajni Bhardwaj Grover
 
PPTX
OpenID AuthZEN - Analyst Briefing July 2025
David Brossard
 
PDF
POV_ Why Enterprises Need to Find Value in ZERO.pdf
darshakparmar
 
PDF
Transforming Utility Networks: Large-scale Data Migrations with FME
Safe Software
 
PDF
"AI Transformation: Directions and Challenges", Pavlo Shaternik
Fwdays
 
PPTX
AUTOMATION AND ROBOTICS IN PHARMA INDUSTRY.pptx
sameeraaabegumm
 
PDF
How Startups Are Growing Faster with App Developers in Australia.pdf
India App Developer
 
PPTX
WooCommerce Workshop: Bring Your Laptop
Laura Hartwig
 
PDF
[Newgen] NewgenONE Marvin Brochure 1.pdf
darshakparmar
 
PDF
CIFDAQ Market Wrap for the week of 4th July 2025
CIFDAQ
 
PDF
New from BookNet Canada for 2025: BNC BiblioShare - Tech Forum 2025
BookNet Canada
 
PDF
Staying Human in a Machine- Accelerated World
Catalin Jora
 
PDF
"Beyond English: Navigating the Challenges of Building a Ukrainian-language R...
Fwdays
 
PPTX
From Sci-Fi to Reality: Exploring AI Evolution
Svetlana Meissner
 
PDF
Newgen Beyond Frankenstein_Build vs Buy_Digital_version.pdf
darshakparmar
 
PDF
Jak MŚP w Europie Środkowo-Wschodniej odnajdują się w świecie AI
dominikamizerska1
 
PPTX
Designing Production-Ready AI Agents
Kunal Rai
 
PDF
CIFDAQ Market Insights for July 7th 2025
CIFDAQ
 
Building Real-Time Digital Twins with IBM Maximo & ArcGIS Indoors
Safe Software
 
What Makes Contify’s News API Stand Out: Key Features at a Glance
Contify
 
Python coding for beginners !! Start now!#
Rajni Bhardwaj Grover
 
OpenID AuthZEN - Analyst Briefing July 2025
David Brossard
 
POV_ Why Enterprises Need to Find Value in ZERO.pdf
darshakparmar
 
Transforming Utility Networks: Large-scale Data Migrations with FME
Safe Software
 
"AI Transformation: Directions and Challenges", Pavlo Shaternik
Fwdays
 
AUTOMATION AND ROBOTICS IN PHARMA INDUSTRY.pptx
sameeraaabegumm
 
How Startups Are Growing Faster with App Developers in Australia.pdf
India App Developer
 
WooCommerce Workshop: Bring Your Laptop
Laura Hartwig
 
[Newgen] NewgenONE Marvin Brochure 1.pdf
darshakparmar
 
CIFDAQ Market Wrap for the week of 4th July 2025
CIFDAQ
 
New from BookNet Canada for 2025: BNC BiblioShare - Tech Forum 2025
BookNet Canada
 
Staying Human in a Machine- Accelerated World
Catalin Jora
 
"Beyond English: Navigating the Challenges of Building a Ukrainian-language R...
Fwdays
 
From Sci-Fi to Reality: Exploring AI Evolution
Svetlana Meissner
 
Newgen Beyond Frankenstein_Build vs Buy_Digital_version.pdf
darshakparmar
 
Jak MŚP w Europie Środkowo-Wschodniej odnajdują się w świecie AI
dominikamizerska1
 
Designing Production-Ready AI Agents
Kunal Rai
 
CIFDAQ Market Insights for July 7th 2025
CIFDAQ
 

Get Started with Cloudera’s Cyber Solution

  • 1. 1© Cloudera, Inc. All rights reserved. Getting Started with Cloudera's Cyber Solution
  • 2. 2© Cloudera, Inc. All rights reserved. 1,000,000,000,000+ [ events per day ]
  • 3. 3© Cloudera, Inc. All rights reserved. Many CISO’s Have A Data Platform Challenge Security Data Storage Layer Data Governance Network Application SIEM (Signature and Correlation) Splunk (Search, Descriptive Analytics) Endpoint User Threat Intelligence 1. Storage costs limit visibility 2. Analytic costs limit insight 3. Analytic techniques insufficient to detect advanced threats 4. Investigation is a complicated, time consuming process Expensive, Proprietary, Stove Piped Archived/ Tape /Dev/ Null
  • 4. 4© Cloudera, Inc. All rights reserved. Advantages of Cloudera’s Platform for Cyber Cloud-Native & On-Premise Go Beyond Basic Analytics • Share data across multiple analytic processing engines • Simple search, SQL, Python, R, Scala Data Flexibility • Faster, more agile, full- fidelity data acquisition • Data portability: Open data model and open storage Cost-Effective Scalability • Elastic scale on-prem or in the cloud • Cloud-native pay-per-use and transience • Proven at big data scale Hybrid • Runs across multi-clouds & on- prem • Multi-storage over S3, HDFS, Kudu, Isilon, DSSD, etcShared Data
  • 5. 5© Cloudera, Inc. All rights reserved. Optimizing a SIEM with Cloudera PackagedApplications Analytic Processing (Spark, Impala, Solr) Management, Governance,Security (ClouderaManager,Cloudera Navigator) Data and Analytic Management Cloudera Data Hub Open Source Custom Apache Spot Open Data Models (HDFS, Hbase, Kudu) Ingestion (StreamSets) (On premise or Cloud) SIEM Sources Threat Intelligence Network User Endpoint
  • 6. 6© Cloudera, Inc. All rights reserved. Support multiple workloads with community defined Open Data Models Endpoint User Network DIVERSE DATA SOURCES SINGLE ACCESS Source: Momentum Partners Cybersecurity Snapshot April 2016
  • 7. 7© Cloudera, Inc. All rights reserved. A community approach to fighting cyber threats.
  • 8. 8© Cloudera, Inc. All rights reserved. Many applications on one shared data set and architecture Visualization & machine learning applications can share common data set & infrastructure CustomPackaged Open source is developing out machine learning (e.g. network threat detection) Open Source Build custom applications & analytics using Cloudera without having to buy new infrastructure
  • 9. 9© Cloudera, Inc. All rights reserved. Demo of Open Source Application • Setup ingestion pipelines from Spot community for Centrify, Windows, and Qualysis data • Create open data model tables • Use Cloudera Manager for StreamSets deployment • Store data in HDFS and prep for Impala queries • Install and deploy Arcadia Retail App from Spot community • Query data that resides in the open data model for ad-hoc analysis
  • 10. Feeding a Cybersecurity Data Lake with StreamSets
  • 11. Who is StreamSets? Enterprise Data DNA StreamSets Mission ~1,000,000 downloads 25% of the Fortune 500 Top-tier Investors Commercial Customers Across Verticals Empower enterprises to harness their data in motion. Products StreamSets Dataflow Performance Manager™ (DPM), StreamSets Control Hub (SCH), StreamSets Data Collector™ (SDC - open source), SDC Edge Strong Partner Ecosystem Open Source Success
  • 12. Threats Happen in Real-Time Ready data for analysis in time to identify and stop threats in progress Data from varied data sources must integrate into the Open Data Model with zero code Be prepared to deal with data drift, a frequent risk to data ingestion efforts
  • 14. © 2017 StreamSets, Inc. All rights reserved. StreamSets Data Operations Platform
  • 15. Benefits of StreamSets for Cyber Adaptable, change- resistant data ingest Faster time to insight and response Complete operational visibility and control
  • 16. Arcadia Data. Proprietary and Confidential Getting Started with Arcadia Data and Cloudera’s Cyber Solution Tadd Wood, Sr. Data Scientist January 24, 2018
  • 17. Arcadia Data. Proprietary and Confidential Ingestion Data Platform Analytics • Setup ingestion pipelines from Spot community for Centrify, Windows, and Qualys data • Create open data model tables • Use Cloudera Manager for StreamSets deployment • Store data in HDFS and prep for Impala queries • Install and deploy Arcadia Dashboards from Spot community • Query data that resides in the Open Data Model for ad-hoc analysis
  • 18. Arcadia Data. Proprietary and Confidential Arcadia Visualization Engine The First Native Visual Analytics Platform for Big Data Arcadia Analytic Platform (Smart Acceleration™) On-Premises Drag-and-drop Visual Analytics & Dashboards HybridCloud Custom Data Applications BIG DATA OS Distributed execution, data storage, metadata, security IN-CLUSTER ANALYTICS ENGINE Scales linearly with cluster for speed and easier management WEB-BASED INTERFACE Drag & drop interface for visual analytics & app workflow DataPlatform
  • 19. Arcadia Data. Proprietary and Confidential Incident Response 19 • Quickly drill across endpoints, users, and network • Real-time dashboards for critical metrics • Easily embed results into case management tools Network Endpoint User
  • 20. Arcadia Data. Proprietary and Confidential Forensic Analysis 20 • Fast filtering across a well known set of attributes • Visuals that make time series analysis simpler • Graph visualization to understand relationships
  • 21. Arcadia Data. Proprietary and Confidential Threat Hunting 21 • Integrate with machine learning workflows and outputs • Full access to your raw events • Ad-hoc data exploration
  • 22. Arcadia Data. Proprietary and Confidential Run scripts to set up the Open Data Model tables for importing cybersecurity-related data. Download Arcadia Instant. https://www.arcadiadata.com/product/instant Use the example dashboards with Arcadia Instant. To Get Started with Arcadia Data on Cybersecurity
  • 23. Arcadia Data. Proprietary and Confidential Walkthrough and Demo
  • 24. Arcadia Data. Proprietary and Confidential To get started after this webinar, go here: https://www.arcadiadata.com/cyber Visit that page to get links for: ▪ Downloading Arcadia Instant ▪ Spot ODM Setup ▪ Spot Dashboards Summary of Our Cybersecurity Solution
  • 25. 25© Cloudera, Inc. All rights reserved. Q&A Learn more at cloudera.com/cybersecurity
  • 26. 26© Cloudera, Inc. All rights reserved. Thank you