According to Paul Stamp, director of product marketing, Security Analytics combines technology from RSA's former threat-detection product NetWitness used in conjunction with the RSA security-event and information management product, enVision. The open-source Hadoop database is another component in Security Analytics that companies with massive amounts of data would use for threat-detection purposes.
The RSA announcement comes on the heels of a similar one from IBM related to its IBM Security Intelligence with Big Data tool, which also makes use of Hadoop.
Stamp says RSA's approach in Security Analytics, which is sold as an appliance, is flexible to allow capture of packet data and log information to be analyzed for security purposes. He says it's not mandatory that the RSA SIEM be used — other SIEM products would be expected to work in RSA's approach — but he advised use of enVision for "better functionality."
The Security Analytics tool starts at $70,000.