Press Release: March 01, 2016

Hewlett Packard Enterprise Announces Comprehensive Cyber Reference Architecture and Enhancements to Threat Defense Services Portfolio

New offerings provide framework for cyber resiliency to proactively identify and manage risk allowing organizations to fearlessly innovate

SAN FRANCISCO, Calif. – RSA Conference – March 1, 2016 – Hewlett Packard Enterprise (HPE) today announced the HPE Cyber Reference Architecture (CRA), a comprehensive information security framework designed to help build resilient organizations capable of addressing today’s most complex security threats. Together with innovative enhancements to the HPE Threat Defense Services portfolio, which includes market-leading security monitoring and managed security services powered by HPE Security ArcSight, the new framework helps organizations comprehensively address today’s digital risks, while layering in advanced capabilities for threat detection and response.

Companies are shifting away from standalone security products that offer a reactive defense approach and toward interoperable security systems that provide a more proactive solution, creating a market that IDC estimates is worth $25 billion. By 2020, IDC expects the market to grow to more than $50 billion as security technology adapts to major trends such as software-defined networks, the Internet of Things (IoT) and demands placed on a 24x7 mobile workforce. 1

To proactively detect and respond to active threats, risk management approaches need to shift to focus on building security into the fabric of their organization. The HPE Cyber Reference Architecture offers business leaders and security professionals concrete guidance to help protect an organization’s critical business assets and interactions between users, applications and data regardless of location or device through a combination of policy, governance, process and technology.

The HPE Cyber Reference Architecture is a comprehensive blueprint for security architecture using a common methodology. Comprising 12 domains, 63 sub-domains and over 350 distinct security capabilities, the HPE Cyber Reference Architecture (CRA) defines solutions to today’s most complex cyber security challenges, including cloud, mobility, Machine-to-Machine (M2M) and Internet-of-Things (IoT).

“Enterprises today are faced with increasingly complex threats and are challenged with being able to comprehensively identify and manage risk while keeping pace with innovation,” said Art Wong, senior vice president, HPE Security Services, Hewlett Packard Enterprise. “Leveraging HPE’s unparalleled expertise in advisory, architecture and transformation across some of the world’s largest organizations, the HPE Cyber Reference Architecture provides 350 distinct security capabilities in the form of security architecture blueprints for the core components and initiatives required to tackle security challenges with confidence.”

HPE also announced the continued evolution of its Threat Defense Services portfolio, which includes market-leading security monitoring and managed Security Information and Event Management (SIEM) services powered by HPE Security ArcSight. Delivered through HPE’s 10 Global Security Operations Centers, the following portfolio enhancements are designed to enhance threat detection and to provide greater visibility and self-service investigative capabilities to customers.

  • Security Alerting: HPE announces the launch of its Security Alerting service powered by HPE Security ArcSight, a fully automated, self-service alert offering for clients looking to consolidate security event log data collection, aggregation, storage, and correlation using a HPE cloud-based, multi-tenant service. With HPE Security Alerting, organizations can simplify and streamline the process of log collection and storage with automated event correlation.
  • Security Investigation & Response: Customers can now benefit from the performance and scalability of HPE Vertica to significantly enhance investigation and analysis of security information within HPE Security Monitoring. Customer data visibility, self-service, and investigative features have also been enhanced through improvements in visualizations, search capabilities, customer access to log sources and tickets, and full integration of HPE Security Consulting and Incident Response artifacts directly into the Security Monitoring portal.
  • Threat Intelligence and Analytics:HPE Threat Central , HPE’s community-sourced security intelligence platform that incorporates dynamic threat analysis scoring, has been integrated into the HPE Threat Defense Services portfolio to further contextualize and inform attacker profiling. HPE is also integrating the HPE Security ArcSight User Behavior Analytics and HPE DNS Malware Analytics into HPE Security Monitoring, for deeper context into users, data and the interactions between them.

Additional information about HPE Security solutions and services is available at HPE booth No. 3411 at the RSA Conference. Keep up with conference happenings by following the hashtag #RSAC and follow @HPE_Security.

About HPE Security
HPE Security helps organizations protect their business-critical digital assets by building security into the fabric of the enterprise, detecting and responding to advanced threats, and safeguarding continuity and compliance to effectively mitigate risk. With an integrated suite of market-leadingproducts, services,threat intelligence and security research, HPE Security empowers organizations to balance protection with innovation to keep pace with today’s idea economy. Find out more about HPE Security at

Join HPE Software on LinkedIn and follow @HPE_Software on Twitter. To learn more about HPE Enterprise Security products and services on Twitter, please follow @HPE_Security and joinHPE Enterprise Security on LinkedIn.

  1. IDC, Security in the 3rd Platform: Marching Toward Proactive Defense, Doc # 255791, May 2015

Forward-Looking Statements
This document contains forward-looking statements within the meaning of the safe harbor provisions of the Private Securities Litigation Reform Act of 1995. Such statements involve risks, uncertainties and assumptions. If such risks or uncertainties materialize or such assumptions prove incorrect, the results of Hewlett Packard Enterprise could differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements, including any statements of the plans, strategies and objectives of Hewlett Packard Enterprise for future operations; other statements of expectation or belief; and any statements of assumptions underlying any of the foregoing. Risks, uncertainties and assumptions include the possibility that expected benefits may not materialize as expected and other risks that are described in Hewlett Packard Enterprise’s filings with the Securities and Exchange Commission, including but not limited to the risks described in Hewlett Packard Enterprise’s Registration Statement on Form 10 dated July 1, 2015, as amended August 10, 2015, September 4, 2015, September 15, 2015, September 28, 2015 and October 7, 2015. Hewlett Packard Enterprise assumes no obligation and does not intend to update these forward-looking statements.

Media contacts

About HP

HP Inc. creates technology that makes life better for everyone, everywhere. Through our portfolio of printers, PCs, mobile devices, solutions, and services, we engineer experiences that amaze. More information about HP Inc. is available at