FireEye, a provider of protection against advanced persistent threats (APTs) and zero-day attacks, has opened a Johannesburg office.
Deon La Grange, country manager for FireEye, Southern African region, which covers Angola, Mauritius, Ghana and Nigeria, says the company offers signature-less protection across multi vectors in near real-time to address these threats.
FireEye will go to market with a two-tier distribution model and has Axis Workgroup signed on as a distributor, and several resellers, including New Order Industries and Datacentrix Cape Town. Two more major resellers are in the pipeline, he adds.
The company, he says, will create awareness around FireEye's solutions, and its resellers will sell, deliver, and service the solutions. By the end of August, it will have12 people locally who are certified on the FireEye platform.
On a global level, at the end of 2012, FireEye ranked fourth on the Deloitte 2012 Technology Fast 50, a list of the 500 fastest growing technology companies in the US.
In addition, in January, the company filed a registration statement with the US Securities and Exchange Commission, the first step towards it making an initial public offering.
According to La Grange, FireEye approaches potential clients on a "proof of value" basis - first determining if its solutions directly address the client's security needs.
He says, to date, this is proving successful for the company. La Grange cites an example of its evaluation of a top financial institution that was considered a "green light" or secure organisation.
FireEye found infection on more than 10 of its servers, found it had downloaded many pieces of malware, had been a part of several botnet attacks, and had made a significant number of call-backs to malicious command and control servers. "Over and above that, several megabytes of data had been exfiltrated from the organisation."
FireEye solutions integrate Web, e-mail, and file protection, to stop APTs - with a close to zero false positive rate, it says.
"To date, security has focused on blocking attacks at the perimeter, and detecting malware through signatures. The problem is that too many threats are slipping through the net and need to be caught at other layers."
Anti-virus and intrusion prevention are being easily circumvented - they are no longer adequate weapons in the war against cyber crime, La Grange notes.
Businesses need intelligent, actionable data. "A complete view of the network's activities allows administrators to baseline normal network behaviour and, in turn, detect anomalous and suspicious activities."
Share