|[May 05, 2014]
iSIGHT Partners Automates Integration With HP ArcSight Platform
AMELIA ISLAND, Fla. --(Business Wire)--
iSIGHT Partners, the cyber threat intelligence experts, today announced
interoperability of iSIGHT
Partners ThreatScape® intelligence with the HP ArcSight (News - Alert)
Security Information and Event Management (SIEM) platform. With this
capability, organizations using HP ArcSight can now directly access high
fidelity cyber threat intelligence - including deep contextual
information on adversary motivation, tactics, techniques, and technical
indicators - for enhanced security and risk management.
Cyber security professionals have access to vast amounts of event data
for shaping security policies and responding to threats. Very little of
that data is tailored to their organizations' unique profile or
integrated with their existing security intelligence systems. The result
is a gap between the collection of cyber security intelligence and the
application of that intelligence to ongoing security operations.
Enabling interoperability between iSIGHT Partners and the HP ArcSight
platform helps to close that gap. The HP-certified interoperability
between the ThreatScape® API and HP ArcSight delivers
technical indicators tied to intelligence analysis in the common event
framework (CEF) format. Leveraging this interoperability, organizations
can get immediate, automated connection of threat intelligence to
events, prioritizing and expediting security actions.
"Gauging which security events are most important remains a fundamental
oal for security operations teams across the globe," said Frank
Mong, vice president and general manager, Solutions, Enterprise Security
Products, HP. "Interoperability between HP ArcSight and ThreatScape will
help SOC teams more quickly and efficiently prioritize events so they
can focus more limited resources on the highest risk threats."
iSIGHT Partners ThreatScape® provides cyber threat
intelligence and associated technical indicators gathered from 200+
native language speakers in 16 countries. This actionable insight keeps
cyber security organizations one step ahead of threats, and enables
security leaders to separate real issues from passing distractions.
"iSIGHT Partners customers using HP ArcSight are already ahead of the
curve when it comes to leveraging security event data," said John P.
Watters, chief executive officer, iSIGHT Partners. "Enabling
organizations to connect security intelligence data from HP ArcSight
with rich threat context is the next step in the maturation of cyber
security to intelligence-led operations."
Intelligence with Intelligence
More than just a data feed, the ThreatScape® API provides
robust, actionable threat intelligence:
Comprehensive: Conveys more than seven years of comprehensive
adversary focused threat, technical, and vulnerability intelligence
Context-rich: Provides for significant enhancement to
organizational security by injecting context into data-driven
automated prioritization and decision-making.
Industry standard: REST-based with outputs in a variety of
existing and emerging industry standard formats including STIX, JSON,
Easy to use: Includes a concise developer guide with references
for commonly used programming languages like C, C++, C#, Python, PHP,
Secure: Communicates over the HTTPS protocol with standard key
and digest-based authentication.
For more information on ThreatScape® or ThreatScape®
API, please contact: firstname.lastname@example.org
or go to www.isightpartners.com/threatscapeAPI
About iSIGHT Partners
iSIGHT Partners is the leading global provider of cyber threat
intelligence. With 200+ experts in 16 countries and expertise in 24
languages, only iSIGHT can deliver the full context and intent of the
most damaging threats, allowing security organizations to respond
faster, defend proactively, and invest smarter. Find iSIGHT Partners on
the web at www.iSIGHTpartners.com
or email us at email@example.com
[ InfoTech Spotlight's Homepage ]