Story image

Threat intelligence has a shelf life says security exec

23 Aug 16

The security division of EMC, the RSA, has new integrated threat intelligence partners for the RSA NetWitness Suite.

RSA says the suite is designed to incorporate threat intelligence from customers, threat intelligence partners, RSA experts and the RSA customer community through Live Connect

Grant Geyer, senior vice president of Products at RSA, says that because threat actors change their tools and techniques, threat intelligence has a shelf life.

 “That means security teams need to be armed with great visibility and a variety of current sources of threat data to bring the attacks into view,” he explains.

“We are continuously expanding our ability to ingest one of the most inclusive variety of data sources, including crowdsourced and STIX formatted threat intelligence, to provide comprehensive visibility into emerging threats and empower our customers to immediately act on the valuable insights uniquely provided by the RSA NetWitness Suite across logs, packets, and endpoints.”

The organisation says its crowdsourced threat intelligence allows for faster identification of new attacks and more accurate prioritisation of incidents.

RSA will be adding both Threat Intelligence Platform (TIP) and Threat Intelligence Content (TIC) partners. 

According to the RSA, its NetWitness Suite is powered by the RSA Advanced Analytics Platform and takes in Structured Threat Information Expression formatted threat intelligence, engineered to provide enhanced security analytics.

These analytics include data science modelling, context enrichment, user and endpoint analysis, behaviour analytics, and machine learning for accelerating threat detection and rapid response. 

All of the organisations TIP partners and TIC providers are certified through the RSA Ready Partner Program.

Ransomware infection? Here’s how you control the damage
Ransomware has evolved to be more sophisticated and targeted, and remains a threat to businesses of all sizes.
Exclusive: Fileless malware driving uptake of behavioural analytics
Fileless malware often finds its way into organisations via web browsers (or in combination with other vectors such as infected USB drives).
'DerpTrolling’ faces jail time for Sony DoS attacks
A United States federal court has charged a 23-year-old man for the hacks on Sony Online Entertainment and other major companies back in 2014.
It's time to rethink your back-up and recovery strategy
"It is becoming apparent that legacy approaches to backup and recovery may no longer be sufficient for most organisations."
Dropbox strengthens security with raft of new partnerships
Integrations will keep customer content protected and secure with tools for controlling identity access, governing data, and managing devices.
Companies swamped by critical vulnerabilities – Tenable
Research has found enterprises identify 870 unique vulnerabilities on internal systems every day, on average, with over 100 of them being critical.
Don’t let your network outgrow your IT team
"IT professionals spend less than half of their time at work optimising their networks and beefing it up against future security threats."
Three access management trends making waves in APAC
Consumer identity proofing, authentication, and authorisation will top the $37 billion value mark by 2023.