Cloud threat intelligence, Machine Learning and behavior analytics applied to network traffic to detect advanced attacks early and enable effective threat hunting.

Bitdefender Network Traffic Security Analytics detects advanced attacks in real-time and automates alert triage to provide context and facilitate incident response. NTSA uses a combination of machine learning and behavior analytics with insights from Bitdefender cloud threat intelligence consisting of 500 million sensors globally to detect threats for all entities, managed or unmanaged, for encrypted or un-encrypted network traffic.

NTSA is a plug-and-play, out-of-band solution, with flexible deployment options, that focuses on traffic meta-data and enables analysis over longer periods of time to accurately detect the most sophisticated malware and Advanced Persistent Threats (APTs) with high fidelity. Combined with Bitdefender GravityZone, organizations can quickly remediate security incidents.


Key Features

Real time threat detection for any network device

Provides complete threat related network activity for any device on the network

Save time with Automated security incident triage

Improves threat hunting efficiency by automatically correlating events to generate high-fidelity alerts

Hunt for cyber threats with detailed forensics

Gives detailed security incident explanation with suggested course of action for improved incident investigation and response.

Advanced Threat Detection

  • Live analysis of all network traffic, including encrypted,
    High fidelity alerts using AI/ML & insights from 500 Million sensors

Automated Triage

  • Detailed attacker Tactics Techniques & Procedures (TTP),
    Alerts and IR investigations resolved with automation

IOT & BYOD Protection

  • Learns & tracks all entities on-premise, in cloud or on SaaS,
    Non-intrusive. No complex log or agent integrations


  • Compliant with PCI, GLBA, NIST, GDPR and others,
    Use of meta-data eliminates privacy concerns

Real-time threats visibility and effective incident investigation

Did you know the average time to detect a breach resulting from an advanced attack is about 6 months? Meanwhile, the security teams are overwhelmed with security alerts that need to be investigated. Bitdefender NTSA can help give back control and reduce risk by providing real-time visibility across environment and effective incident investigation capabilities. It works by applying ML and Behavioral Analytics with insights from Bitdefender Threat Intelligence to detect advanced, stealthy threats. Bitdefender NTSA IntelliTriage automates security alert triage so security analysts saves time on hunting for that illusive threat.


Security Operations Centers should not suffer of alerts fatigue!

IntelliTriage, the newest NTSA component, automates the process of security incidents triage to dramatically improve incident investigation time and reduce organizational risk with high-fidelity alerts.

IntelliTriage also provides recommended remediation guidance on steps to take based on the security incident.

It enables complex scenario-based learning to detect advanced attacks with high accuracy and corelates thousands of security alerts in order to create a clear picture of each incident. IntelliTriage provides detailed explanations for the incident severity score. Recommended remediation actions are also provided to facilitate faster incident response.



For inquiries, email us at