Application White-listing through Bit9 aka Parity aka Carbon Black Protect - A Masters Candidate Webcast
Security professionals have espoused the shortfalls of Anti-Virus for detecting and deterring modern threats since APT became an industry term. One such solution is Carbon Black Protect (Formerly Bit9 Parity) an application white-listing vendor who was one of the first companies to offer a solution in the space. Cyber security professionals looking to implement an application white-listing solution should pay particular attention to some of the shortfalls and implementation issues regarding Carbon Black Protect. However, the proper implementation of the solution can significantly decrease infections and greatly improve an organizations security posture. Another interesting product from the same company is Carbon Black Response, a product that fits in the Enterprise Detection and Response (EDR - Gartner term) space. This solution can significantly expand information security focused forensics investigations at an enterprise scale. The ability to isolate systems for analysis, immediate process-tree analysis, and memory resident network connections - are a necessary capability for high-level Incident Response personnel. Both products also complement each other significantly and provide next-generation incident response capabilities.
