|By Business Wire||
|May 5, 2014 11:40 AM EDT||
iSIGHT Partners, the cyber threat intelligence experts, today announced interoperability of iSIGHT Partners ThreatScape® intelligence with the HP ArcSight Security Information and Event Management (SIEM) platform. With this capability, organizations using HP ArcSight can now directly access high fidelity cyber threat intelligence – including deep contextual information on adversary motivation, tactics, techniques, and technical indicators – for enhanced security and risk management.
Cyber security professionals have access to vast amounts of event data for shaping security policies and responding to threats. Very little of that data is tailored to their organizations’ unique profile or integrated with their existing security intelligence systems. The result is a gap between the collection of cyber security intelligence and the application of that intelligence to ongoing security operations.
Enabling interoperability between iSIGHT Partners and the HP ArcSight platform helps to close that gap. The HP-certified interoperability between the ThreatScape® API and HP ArcSight delivers technical indicators tied to intelligence analysis in the common event framework (CEF) format. Leveraging this interoperability, organizations can get immediate, automated connection of threat intelligence to events, prioritizing and expediting security actions.
“Gauging which security events are most important remains a fundamental goal for security operations teams across the globe,” said Frank Mong, vice president and general manager, Solutions, Enterprise Security Products, HP. “Interoperability between HP ArcSight and ThreatScape will help SOC teams more quickly and efficiently prioritize events so they can focus more limited resources on the highest risk threats.”
iSIGHT Partners ThreatScape® provides cyber threat intelligence and associated technical indicators gathered from 200+ native language speakers in 16 countries. This actionable insight keeps cyber security organizations one step ahead of threats, and enables security leaders to separate real issues from passing distractions.
“iSIGHT Partners customers using HP ArcSight are already ahead of the curve when it comes to leveraging security event data,” said John P. Watters, chief executive officer, iSIGHT Partners. “Enabling organizations to connect security intelligence data from HP ArcSight with rich threat context is the next step in the maturation of cyber security to intelligence-led operations.”
Intelligence with Intelligence
More than just a data feed, the ThreatScape® API provides robust, actionable threat intelligence:
- Comprehensive: Conveys more than seven years of comprehensive adversary focused threat, technical, and vulnerability intelligence sourced globally.
- Context-rich: Provides for significant enhancement to organizational security by injecting context into data-driven automated prioritization and decision-making.
- Industry standard: REST-based with outputs in a variety of existing and emerging industry standard formats including STIX, JSON, and XML.
- Easy to use: Includes a concise developer guide with references for commonly used programming languages like C, C++, C#, Python, PHP, and Java.
- Secure: Communicates over the HTTPS protocol with standard key and digest-based authentication.
About iSIGHT Partners
iSIGHT Partners is the leading global provider of cyber threat intelligence. With 200+ experts in 16 countries and expertise in 24 languages, only iSIGHT can deliver the full context and intent of the most damaging threats, allowing security organizations to respond faster, defend proactively, and invest smarter. Find iSIGHT Partners on the web at www.iSIGHTpartners.com or email us at [email protected]
Sep. 27, 2016 07:30 PM EDT Reads: 2,125
Sep. 27, 2016 07:15 PM EDT Reads: 418
Sep. 27, 2016 07:00 PM EDT Reads: 2,844
Sep. 27, 2016 06:45 PM EDT Reads: 1,805
Sep. 27, 2016 06:30 PM EDT Reads: 3,557
Sep. 27, 2016 06:30 PM EDT Reads: 2,184
Sep. 27, 2016 06:15 PM EDT Reads: 377
Sep. 27, 2016 06:00 PM EDT Reads: 1,695
Sep. 27, 2016 05:45 PM EDT Reads: 1,656
Sep. 27, 2016 05:30 PM EDT Reads: 2,005
Sep. 27, 2016 05:15 PM EDT Reads: 297
Sep. 27, 2016 05:15 PM EDT Reads: 2,761
Sep. 27, 2016 05:00 PM EDT Reads: 1,596
Sep. 27, 2016 04:00 PM EDT Reads: 2,658
SYS-CON Events announced today that Commvault, a global leader in enterprise data protection and information management, has been named “Bronze Sponsor” of SYS-CON's 19th International Cloud Expo, which will take place on November 1–3, 2016, at the Santa Clara Convention Center in Santa Clara, CA. Commvault is a leading provider of data protection and information management solutions, helping companies worldwide activate their data to drive more value and business insight and to transform moder...
Sep. 27, 2016 03:15 PM EDT Reads: 2,763