Autonomous Security Engine (ASE)

ASE allows core services to share security event, context and state data continuously in real-time. Individual services can automatically react at machine speed to threats and attacks, stopping them before they enter the kill chain.

Censornet’s single cloud security platform eradicates complexity by deeply integrating your core security products.

Consolidating critical security products can save your organisation thousands of dollars and hours lost to managing separate systems, sprawling admin interfaces and portals.

Censornet Autonomous Security Engine leverages the intelligence gathered by the platform about user activity, devices, content and other entities to deliver security outcomes – instead of events and alerts – to already overwhelmed security teams.

Censornet ASE adds invaluable insight into user application layer activity to SIEM solutions and complements network traffic analysis and endpoint detection and response systems.

Providing user activity information can rapidly explain whether the cause of an observed anomaly – such as a spike in traffic from a specific endpoint – was a result of a legitimate user action or should be investigated.

Censornet ASE comes pre-integrated with multiple world class industry leading threat intelligence feeds. ASE is updated 24×7 to automatically protect against new threat actors, without analyst or SecOps involvement.

With ASE activated email security will silently prevent attacks from new “phishy” or “spammy” domains and web security will proactively protect users from visiting new malware distribution sites.

Censornet ASE automates repetitive low-level SOC actions freeing valuable analyst time to investigate complex incidents. Reacting at machine speed, response times are effectively zero.

For smaller organisations ASE can be game changing – implementing and acting on events and threat intelligence around the clock.