Story image

Threat intelligence has a shelf life says security exec

23 Aug 2016

The security division of EMC, the RSA, has new integrated threat intelligence partners for the RSA NetWitness Suite.

RSA says the suite is designed to incorporate threat intelligence from customers, threat intelligence partners, RSA experts and the RSA customer community through Live Connect

Grant Geyer, senior vice president of Products at RSA, says that because threat actors change their tools and techniques, threat intelligence has a shelf life.

 “That means security teams need to be armed with great visibility and a variety of current sources of threat data to bring the attacks into view,” he explains.

“We are continuously expanding our ability to ingest one of the most inclusive variety of data sources, including crowdsourced and STIX formatted threat intelligence, to provide comprehensive visibility into emerging threats and empower our customers to immediately act on the valuable insights uniquely provided by the RSA NetWitness Suite across logs, packets, and endpoints.”

The organisation says its crowdsourced threat intelligence allows for faster identification of new attacks and more accurate prioritisation of incidents.

RSA will be adding both Threat Intelligence Platform (TIP) and Threat Intelligence Content (TIC) partners. 

According to the RSA, its NetWitness Suite is powered by the RSA Advanced Analytics Platform and takes in Structured Threat Information Expression formatted threat intelligence, engineered to provide enhanced security analytics.

These analytics include data science modelling, context enrichment, user and endpoint analysis, behaviour analytics, and machine learning for accelerating threat detection and rapid response. 

All of the organisations TIP partners and TIC providers are certified through the RSA Ready Partner Program.

SecOps: Clear opportunities for powerful collaboration
If there’s one thing security and IT ops professionals should do this year, the words ‘team up’ should be top priority.
Interview: Culture and cloud - the battle for cybersecurity
ESET CTO Juraj Malcho talks about the importance of culture in a cybersecurity strategy and the challenges and benefits of a world in the cloud.
Enterprise cloud deployments being exploited by cybercriminals
A new report has revealed a concerning number of enterprises still believe security is the responsibility of the cloud service provider.
Ping Identity Platform updated with new CX and IT automation
The new versions improve the user and administrative experience, while also aiming to meet enterprise needs to operate quickly and purposefully.
Venafi and nCipher Security partner on machine identity protection
Cryptographic keys serve as machine identities and are the foundation of enterprise information technology systems.
Machine learning is a tool and the bad guys are using it
KPMG NZ’s CIO and ESET’s CTO spoke at a recent cybersecurity conference about how machine learning and data analytics are not to be feared, but used.
Seagate: Data trends, opportunities, and challenges at the edge
The development of edge technology and the rise of big data have brought many opportunities for data infrastructure companies to the fore.
Popular Android apps track users and violate Google's policies
Google has reportedly taken action against some of the violators.