The purpose of NonStop Innovations is to connect with other innovators and companies within the HPE NonStop space. This month I had the pleasure of chatting with Steve Tcherchian, Chief Information Security Officer (CISO) at XYPRO Technology about their newest product, XYGATE SecurityOne (XS1) and the role of intelligent data and security on the HPE NonStop server.
XYPRO has been around for over 30 years in the mission-critical security space working on HPE NonStop servers, so it's no surprise that they are an industry leader in providing new technology to the NonStop space. Their portfolio is impressive, with products ranging from security solutions for access control and data security to auditing, compliance, and recently security intelligence and risk management.
Announced at Boot Camp last year, their newest venture is XYGATE SecurityOne, a security intelligence and analytics solution for the HPE NonStop server and XYPRO's largest development project to date. "We are in beta right now, so we have a few customers to whom we have already deployed. We are working through that process at the moment. It’s pretty exciting," said Steve.
The product itself focuses on specific security indicators on the HPE NonStop server. "We are able to bring multiple event sources together, correlate them, and most importantly contextualize them for a big-picture view of security and risk management in your NonStop infrastructure," Steve added.
Historically, in most environments there have been SIEM (Security Information & Event Manager) solutions like ArcSight, QRadar, and SPLUNK, just to name a few. The NonStop server can send its event data to SIEMs, but the challenge is that those solutions are not contextually aware of the NonStop. In essence, they can receive data but not analyize it without someone going in and creating a rule or action. The data will just sit there. That's where XYGATE SecurityOne comes in.
"It’s a complementary solution to the SIEM. The NonStop server sends its data to SecurityOne and then SecurityOne differentiates itself with specific domain knowledge of the NonStop server environment. SecurityOne provides rich, contextualized data to the SIEM for the bigger enterprise security picture," said Steve.
"The whole idea of SecurityOne came up because of the deep XYGATE suite of security products for the NonStop server. We are leveraging all of the data our products generate to feed SecurityOne. Without the history of XYGATE products, there wouldn’t be a XYGATE SecurityOne," Steve explained. "Products like XYGATE Merged Audit (XMA) and XYGATE User Authentication (XUA), which come shipped on every system, are integral to SecurityOne. XMA especially sits in a strategic place in the NonStop because of its audit capabilities. Because it comes as part of the NonStop security supplied with the operating system, it has unparalleled access to NonStop audit data. XMA gathers that data and is able to feed it to SecurityOne, feeding the product’s intelligence and analytics."
And that's just the tip of the iceberg. "We see XS1 as being our flagship product going forward," Steve added, "and the platform itself will allow us to expand and integrate more and more solutions that will be beneficial to the NonStop and even beyond the NonStop space. We have quite a few things in the works."