RSA NetWitness Endpoint Primary Use Case

Dr Trust Tshepo Mapoka
Senior Cybersecurity Consultant at CIA Botswana
We use this solution to detect indicators of compromise, where incidents that occur are analyzed and given risk scores. For example, if the endpoint is of high risk then it will be indicated in red. By contrast, if it's of low risk then it will be indicated in green. The scoring criteria are what we call the Indicators of Compromise. The overall goal is to detect malware that is affecting the endpoints and then provide a response. It is often used by banks and telecom companies. View full review »
reviewer1259418
Senior Cyber Security Analyst (SAFe Agile) at a transportation company with 1,001-5,000 employees
We use the solution for the contamination. We detect the incidents and then proceed for the contamination and error notification. For example, there's some intrusion history to the endpoint and there's a partial command that detects the code imbalance. We're able to find it and deal with it. View full review »
it_user629541
Security Consultant at a tech services company with 10,001+ employees
We are using it as a SIEM tool. View full review »
Find out what your peers are saying about RSA, Carbon Black, CrowdStrike and others in Endpoint Protection (EPP) for Business. Updated: October 2020.
442,194 professionals have used our research since 2012.