Network Security Made Simple
See risks, stop threats and prove compliance. Built for small IT security teams, CyGlass NDaaS provides visibility, protection and reassurance.
Get your demoCyGlass Network Defence as a Service (NDaaS) delivers a cost-effective network detection, response, and compliance solution for cybersecurity teams that have a distributed, hybrid network and do not have the resources to operate a SIEM or 24X7 security operations centre.
Utilising layered AI-driven security policies, CyGlass NDaaS reduces the massive volume of network traffic into prioritised smart alerts, investigative views, and threat and compliance reports.
Benefits of the platform
-
See Risk Across Your Network
Network operations managers gain visibility to abnormal risky network activities including remote workers and hybrid cloud environments. Managers can quickly identify rogue devices, unprotected devices, threats to IoT devices and backup system failures without overburdening your IT team.
- Network visibility across locations and SaaS providers
- Organise your network into security zones and locations
- Real-time asset inventory
- Critical services
- Detection of network blind spots and rogue devices
- Continuous threat scoring for all network actors
-
Stop Threats
CyGlass NDaaS enables automated continuous monitoring for threats across networks, the cloud, and VPNs. Utilising a unique combination of cyber TTP policies, threat intelligence and layered AI, CyGlass delivers a short, prioritised list of smart alerts and investigation reports covering network, AD, and cloud threat surfaces. Cybersecurity managers utilise NDaaS to surface and remediate cyber-attacks 24x7.
CyGlass Threat Coverage
- Ransomware
- Command & Control C2
- Man-in-the-Middle
- Unauthorised web & DNS activities
- Masqueraders (tunnelling)
- Credential compromise
- Rogue behaviours
- Insider threats
- Lateral movement
- Data exfiltration
-
Prove Compliance
Prebuilt, automated compliance policies and reports are activated with the push of a button using CyGlass Goals and Objectives. Prove compliance through prebuilt reporting including control effectiveness, SLA tracking, and compliance objective metrics. Compliance policies include multiple aggregated rules, AI models, control objectives and assurance reports for NIST, Cyber Essentials, FFIEC, NIAC, CMMC, and more.
- AI-driven Policy Assurance
- Assessment/compliance reports
- Over 100 out of the box cyber & compliance policies
- Create custom rules/policies
- Customizable alerting and notification settings
- Network visibility across locations and SaaS providers
- Organise your network into security zones and locations
- Real-time asset inventory
- Critical services
- Detection of network blind spots and rogue devices
- Continuous threat scoring for all network actors
CyGlass Threat Coverage
- Ransomware
- Command & Control C2
- Man-in-the-Middle
- Unauthorised web & DNS activities
- Masqueraders (tunnelling)
- Credential compromise
- Rogue behaviours
- Insider threats
- Lateral movement
- Data exfiltration
- AI-driven Policy Assurance
- Assessment/compliance reports
- Over 100 out of the box cyber & compliance policies
- Create custom rules/policies
- Customizable alerting and notification settings
Focus on what's important with Layered AI
Activities
Collects NetFlow, Syslog and other users and service logs from existing tools
Flows
ML Events
Analyses the data, defining norms and identifying threat-related anomalous events
Anomalous Events
Behaviors
Correlates anomalies, threat intelligence, and behaviour patterns to surface high confidence threats
Correlated Risky Behaviors
Smart Alerts
Alerts delivered on a small number of connected high-risk behaviours, and control policy violations
Smart Alerts - 3 Alerts a day
In depth visibility and automated reports
CyGlass' objective-driven alerts and reports enable security teams to focus on what is important, why, and what remediation action is needed to mitigate the risk or threat. Prebuilt policy objectives mean teams click a button to activate controls, AI models and reports based on organisational needs. Policies cover threats like ransomware defence, risks like rogue device identification, or regulations/frameworks like HIPAA or NIST. Security teams save both time and money with these easy-to-activate prebuilt policies.

Intelligence and automation
Using our data collector layer, the CyGlass AI engine utilises unsupervised machine learning in a big data architecture with integrated policy engine.
This provides fast deployment of operational, threat, and compliance objectives and controls.
