Story image

Mimecast integrates with IBM’s security platform

21 Nov 18

Mimecast launched Mimecast for IBM QRadar, which integrates email security data into IBM’s security intelligence technology. 

The new Mimecast for IBM QRadar app is designed to offer joint customers improved visibility into potential vulnerabilities and ongoing attacks occurring via email, enabling prioritised incident response through one single console and an increased security posture.

The threat landscape is constantly evolving, yet email continues to be one of the top attack vectors. Cyber threats are becoming stealthier and sophisticated, and are designed to evade detection. 

The Mimecast for IBM QRadar app is designed to offer organisations better detection and deeper insights before, during and after an attack. 

Integrating Mimecast data into the QRadar system through the Mimecast data logging API is engineered to allow email security data to be correlated against other data sources, and be included in behavioural anomaly detection helping to identify indicators of advanced threats that would otherwise go unnoticed.

The Mimecast for IBM QRadar app is designed to integrate with the IBM QRadar Security Intelligence Platform, helping security teams accurately detect, understand and prioritise threats that matter most to the business. 

Leveraging Mimecast’s new open application programming interfaces (API), the Mimecast for IBM QRadar app is engineered to allow Mimecast and IBM customers to better predict and prioritise what threats to remediate by providing greater visibility into potential incidents. 

Related events are grouped together and tracked as the threat progresses through the kill chain, helping enable security teams to gain prioritised alerts based on severity. These alerts help security teams to respond faster and with more certainty, which helps contain and limit the impact of an attack. 

Additionally, joint customers can benefit from an increased security posture by leveraging one single system for threat intelligence and response, which now can include Mimecast security intelligence.

“Attack methods are quickly evolving and growing more advanced, targeted and dangerous. Organisations are seeking out solutions to augment a defence strategy, but at the same time are challenged with siloed security products which offer little-to-no visibility, which makes it increasingly difficult to ensure they are identifying incoming threats and prioritising investigations,” said Christina Van Houten, Chief Strategy Officer, Mimecast. 

“Mimecast’s integration with IBM QRadar technology gives joint customers the visibility they need to help speed up the incident response process by cutting down the ‘noise’ with prioritised in-depth forensic analysis, all through one central security console.”

As threats are evolving faster than ever, collaborative development amongst the security community will help organisations adapt quickly and speed innovation in the fight against cybercrime.

SolarWinds adds SDN monitoring support to network management portfolio
SolarWinds announced a broad refresh to its network management portfolio, as well as key enhancements to the Orion Platform. 
JASK prepares for global rollout of their AI-powered ASOC platform
The JASK ASOC platform automates alert investigations, supposedly freeing the SOC analyst to do what machines can’t. 
Pitfalls to avoid when configuring cloud firewalls
Flexibility and granularity of security controls is good but can still represent a risk for new cloud adopters that don’t recognise some of the configuration pitfalls.
Securing hotel technology to protect customer information
Network security risks increase exponentially as hotels look to incorporate newer technologies to support a range of IoT devices, including smart door locks.
Why total visibility is the key to zero trust
Over time, the basic zero trust model has evolved and matured into what Forrester calls the Zero Trust eXtended (ZTX) Ecosystem.
Gartner names Proofpoint Leader in enterprise information archiving
The report provides a detailed overview of the enterprise information archiving market and evaluates vendors based on completeness of vision and ability to execute.
WatchGuard appoints new channel distributors in A/NZ
The appointments will enable WatchGuard to expand its regional channel reseller footprint.
Tensions on the rise after Huawei CFO arrest
“Recently our corporate CFO, Meng Wanzhou, was provisionally detained by the Canadian authorities on behalf of the United States of America."