SNAP-Defense — Blackpoint’s Security Operations & Incident Response platform. Built by experienced engineers and former cyber security operators, it detects lateral movement in its earliest stages, allowing you to instantly neutralize threats before they spread. Today, companies utilize numerous security products; most are standalone, complex, and slow. Detecting and analyzing hacker tradecraft often takes weeks of analysis and, once found, no effective response exists. Blackpoint’s SNAP-Defense Security Operations & Incident Response platform is a gamechanger; it reduces your security stack while delivering realtime threat alerts and immediate response with the click of a button.​

KEY BENEFITS

SNAP-Defense supports live network mapping of your entire network along with real-time asset visibility. When a new device is connected, it will be displayed on the map along with any live alert visualization.

• Live Network Map of Devices
• Real-time Alert Visualization
• Instant Response

Stop Threats in Realtime with Built-in, Immediate, and Effective Response

• Point-and-click response to detain compromised devices
• Easily understandable alerts enable rapid triage by Tier 1 analysts with detailed data for Tier 3 analysts
• Custom detainment notification message to device users

Experience the power of live visualisation

• Network Mapping
• Live network map of Cisco, Juniper, endhost, server, mobile, and IoT devices
• Operational Technology (OT), Building Automation Systems (BAS), and Industrial Control Systems (ICS) asset discovery and mapping (with NICOS)
• View integrated map of IT and OT assets
• Displays managed and unmanaged devices
• Displays Wi-Fi connected devices, including support for Meraki AP
• View up/down status for managed devices
• 3rd party product integration, including SIEM, anti-malware, and traffic analysis

Asset Visibility

• Live alert visualization with network context
• Automatically generates Layer-2 and Layer-3 links using ARP, MAC tables, CDP, IP/Subnets, and DHCP (with NICOS)
• Collects endpoint and router metadata, including running services and processes, netstats, users, configuration files, and more
• Provides on-demand device metadata collection
• Point-and-click down selection and filtering
• Quickly search device metadata, including services, processes, users, OS versions, etc.
• Detailed VLAN and subnet visibility, including endhost to VLAN mapping

SNAP-DEFENSE DEPLOYMENT OPTIONS

Manage SNAP-Defense on-premise, in the Blackpoint Secure Cloud, or take advantage of our 24/7 MDR Service.

• Simple Endpoint Agent Deployment
• SMS & Email Notifications
• Two-factor Login Authentication