Threat Detection and Data Loss Prevention (DLP)

Detect so you can defend.
Shine a light on your cyber terrain, detect and prevent threats, and stop data loss from occurring.

See More, Inspect More

Identifying threats and data leakage requires deep inspection and analysis of all forms of content, including unpacking and extracting deeply embedded files. Fidelis Network bi-directionally scans all network traffic, regardless of port or protocol, to reveal the network and application protocols, files, and content with sensors in five locations (direct, internal, email, web and cloud).

Read the data sheet for an overview of Fidelis Network.

Never Miss an Attack or Data Leaving Your Network

  1. Patented Deep Session Inspection® and  Deep Packet Inspection give you unique visibility across all ports and protocols into content and context in real-time
  2. By collecting and storing all metadata traffic for months, you have retrospective analysis for automated security analytics on frequency and sequencing, machine learning anomaly detection, investigations, and improved threat hunting
  3. Automatically discover and classify data, tag content and understand behavior anomalies to prevent unauthorized transfers out of your network, email and web traffic

Map Your Cyber Terrain

Automatically profile and classify IT assets and services including enterprise IoT, legacy systems and shadow IT to map your cyber terrain. Adding Fidelis Endpoint provides software inventory and known vulnerabilities with CVE and KB links, plus security hygiene for patches and endpoint status. You can even import third party external sources to enrich your cyber terrain knowledge.

Deep Visibility Across Your Security Stack

  1. Gain visibility of all ports and protocols via DPI, DSI (Layer7), and PCAPs bi-directional analysis with full session reassembly in real-time
  2. Protocol, application, and deep content decoding with recursive extraction
  3. Place sensors across direct, internal, email, web and cloud traffic for wide visibility
  4. Automatically profile assets and your cyber terrain
  5. Benefit from structured and enhanced metadata for over 300 attributes, indexed for fast queries
  6. Tag content with custom tags
  7. Store metadata on-premises or in the cloud for 360+ days for retrospective analysis

Prevent Threats

Fidelis Network includes multiple sensors that can be placed throughout your network to enforce prevention policies. These sensors can be placed inline or out-of-band based on your network configuration and prevention tolerance.

Multiple defenses in one platform

  1. Threat Prevention using static signatures, multi-dimensional behavior rules, threat intelligence feeds, plus emulation and heuristics
  2. Threat intelligence open feeds (Fidelis Insight, Reputation, STIX/TAXII, YARA, Suricata) plus internal threat intel including custom rules and indicators
  3. Threat hunting with real-time content analysis or retrospective indexed metadata supporting fast iterative and interactive queries to test hunting hypotheses
  4. Data Leakage/Theft where direct and internal sensors drop sessions, email sensors quarantine, drop, re-route, or remove attachments, and web sensors redirect web pages or drop sessions
  5. Profiling TLS encrypted traffic based on metadata and certificates, determining human browsing versus machine traffic, plus evolving data science models to detect hidden threats

Detect Threats

By conducting real-time network content and context analysis and identifying behaviors that indicate compromises, Fidelis Network provides automated detection for the proactive discovery of attackers, suspicious hosts, and malware.

See everything leaving the network

  1. DLP using data profiling and classification with pre-built policies for known compliance regulations across network, email and web sensors to alert on policy violations
  2. Email security including internal email spray attacks for cloud SaaS email or on-premises with pre-click URL analysis, attachment analysis, and OCR image to text analysis for data leakage
  3. Security analytics based on high and low frequencies, plus sequencing analysis
  4. Threat Detection using cloud-based sandboxing, network behavior analysis, new threat intelligence automatically applied to retrospective metadata, plus machine learning anomaly detection

"We’re able to observe more – more aspects, more activities and more methods used during an attack. Thanks to Fidelis our security dramatically changed."

- IT Director, Marek Laskowski, DZP

Eliminate Alert Fatigue and Automate Response

Fidelis Network automatically validates, correlates, and consolidates network alerts against every Fidelis managed endpoint in your network. Minimize false positives and shift from clues to conclusions so you can quickly address the alerts that matter most.

Focus on what matters

  1. Derive conclusions within one solution with aggregated alerts, context, and evidence
  2. Expose misuse of assets and encryption, plus discover proxy and security circumvention
  3. Zone in on what matters with risk scoring, behavioral and historical analytics, and policy and alert management
  4. Integrate with your enterprise security stack with an open policy interface, and the ability to send alerts and data to your SIEM or SOAR
Resource: Video

Learn How to Automatically Validate Network Alerts at the Endpoint

Learn More

The Cornerstone of Your Security Stack

Fidelis Network provides the rich metadata as the DNA to understand content, context and behavior across you mapped cyber terrain. From there you can build upon this cornerstone adding deception and endpoint detection and response.

Work seamlessly to classify, prevent, detect, investigate and respond in one platform

  1. With deception you can automatically profile your assets and deploy accurate deception decoys and breadcrumbs
  2. Understand TLS encrypted traffic anomalies based on metadata and certificates, plus human versus machine traffic profiles to detect malware and C2 communications
  3. Quickly search and query rich metadata stored on-premises or cloud from network sensors and endpoint agents, plus build and save advanced queries using Boolean logic, a step beyond faceted search
  4. Automate detection, investigations and response with pre-built scripts and playbooks
  5. Leverage open source threat intelligence and apply it across network sensors and endpoints

Leverage Threat Intelligence and Research for More Accurate Detection

With Fidelis Insight you can rapidly detect and respond to threats in your environment, even when they occur in the past. By analyzing real-time and historical data, sandboxing files, and applying machine learning analysis, Fidelis Insight provides curated threat intelligence and behavior rules to Fidelis Network.

Go one step further with Fidelis Threat Research as a Service (TRaaS), and receive on-demand access to threat research experts who can provide anything from intelligence concerning adversaries, to malware analysis and reversing.

Learn more

What Customers Are Saying

Goes Immediately To Work Detecting Evil Out Of The Box!

“Fidelis Network is by far one of the easiest DLP/IDS/IPS solutions I’ve had the pleasure to deploy in a production environment. The malleability in creating custom alerting is far superior to other solutions I’ve worked with. Combine this with an outstanding Support Team and Fidelis Network is…

Read full review

Protect your Network with Military Grade Capabilities

“I’ve been running Fidelis Network for over 8 years and I continue to be impressed with the capabilities and improvements every day. It’s still one of the primary systems used to protect network and email traffic for many companies.”

Read full review

Flexible Deployment Options:

On premises

  • You maintain and manage all appliances and software
  • Fidelis professional services assists with deployment and training
  • Available network sensors include: Direct, Mail , Internal, and Web
  • Maintenance fees includes intelligence updates from Fidelis Threat Research Team
  • License additional appliances, sensors as your needs grow

Cloud

  • Infrastructure maintained by Fidelis, so you can focus on security
  • Rapid deployment and immediate implementation
  • Scale up as you grow with as many software sensors as you need
  • Uninterrupted service as you transition from a trial to production
  • Simplified subscription pricing based on your bandwidth and storage needs

Let's Get Started!

Ready to see how Fidelis Network redefines your security stack?