Advanced Threat Monitoring (ATM)
Advanced threat monitoring (ATM) is a managed service delivered by skilled Leidos cyber analysts. The service is built on experience and intelligence gained from more than a decade of actively defending and mitigating advanced threats.
Passive network sensors installed on your network allow our cyber analysts the visibility they need to assess network anomalies, track trends and detect threats before they do harm. Using the Cyber Kill Chain® analytic framework, analysts connect the dots left by persistent attackers to create actionable intelligence to inform a proactive approach to network defense.
ATM leverages the following technologies and delivers value in many ways:
- Passive network sensors accommodate different network loads and permit complex, near-real-time detection with no disruption of network traffic
- Secure, flexible, and scalable Linux platform allows easy creation of new detection or situational awareness capabilities
- APT command and control channel detection from our constantly evolving intelligence
- Network situational awareness logs enriched with information about particular security events and threats