Today Intel Security outlined a unifying approach for the cybersecurity industry that strives to eliminate fragmentation through updated integrated solutions, new cross-industry partnerships and product integrations within the Intel Security Innovation Alliance and Cyber Threat Alliance (CTA).
Intel Security announced new and updated solutions: McAfee Enterprise Security Manager (ESM) 10 and McAfee Virtual Network Security Platform (vNSP).
New capabilities of the McAfee ESM 10 include:
- A new user interface reflects extensive incident management workflow usability testing, delivering efficiency, more effective threat detection and response, and the ability to manage multiple incidents within the same dashboard.
- Advancements have improved ongoing contextual threat intelligence and immediate access to critical threat data to identify, scope and orchestrate responses to emerging attacks.
- Foundstone threat researchers (i.e., Intel Security's expert security consultants) can now augment staffing as part of a virtual SOC offering, adding expertise, capacity and coverage to supplement existing enterprise capabilities and extending the Foundstone services lifecycle SOC portfolio.
In addition, McAfee vNSP now extends virtual network protection to Amazon Web Services (AWS) cloud and OpenStack cloud deployments, with new multi-cloud licensing, protecting virtual networks. New capabilities include:
- McAfee vNSP protects AWS workloads from attacks like zero-day, bots, malware and application-level DOS with both detection and protection mode. It integrates with AWS Auto Scaling to deliver a scalable security solution with a single pane of glass.
- vNSP continues to add support for multi-hypervisor platforms, which now includes VMware ESX, VMware NSX and OpenStack cloud with its next-generation IPS. Security Operations can now manage their public and private cloud security from a single network security management console.
- New integration with McAfee Cloud Threat Detection allows McAfee Network Security Platform (NSP) to augment existing inspection capabilities with sophisticated cloud-based malware analysis.
Today, the Intel Security Innovation Alliance, announced 15 new partnerships, bringing the total number of partners to more than 135 globally.
Aspart of the OpenDXL initiative, Intel Security is publishing more open source software on github.com/opendxl to further reduce high-integration complexity and cost, and replacing lengthy manual and repetitive processes for enterprises. These advancements include:
New open source connectors for McAfee Threat Intelligence Exchange (TIE) and McAfee Active Response (MAR) let applications easily use these tools to search endpoints and query and set file reputations, simplifying the process of querying endpoints within the enterprise environment to just 20 lines of code.
Intel Security has expedited availability of the OpenDXL Python client, which is now available for organizations to download, develop and deploy with confidence.
New OpenDXL connectors for McAfe ePolicy Orchestrator (McAfee ePO) platform APIs enable fast options to apply policies, tag systems, move groups and trigger actions within the security platform.
With the goal to improve cybersecurity efficiencies and maximize protection, 15 new companies have joined the Intel Security Innovation Alliance: Absolute Software, Bay Dynamics, Cyphort, DFLabs, Digicert, Dropbox, io, Fireglass, Kaspersky, Opswat, Radware, SailPoint, SAS Institute, SS8 Networks and ThreatConnect.
Intel Security also announced that it is now sharing and consuming advanced threat intelligence through the Cyber Threat Alliance Platform (CTAP) and that it has a plan to further integrate CTAP with its products. CTAP is a platform that scores and shares threat intelligence among members of the Cyber Threat Alliance.