CHANNELS

Subscribe to the InfoTech eNewsletter

infoTECH News

TMCNet:  iSIGHT Partners Automates Integration With HP ArcSight Platform

[May 05, 2014]

iSIGHT Partners Automates Integration With HP ArcSight Platform

AMELIA ISLAND, Fla. --(Business Wire)--

iSIGHT Partners, the cyber threat intelligence experts, today announced interoperability of iSIGHT Partners ThreatScape® intelligence with the HP ArcSight (News - Alert) Security Information and Event Management (SIEM) platform. With this capability, organizations using HP ArcSight can now directly access high fidelity cyber threat intelligence - including deep contextual information on adversary motivation, tactics, techniques, and technical indicators - for enhanced security and risk management.

Cyber security professionals have access to vast amounts of event data for shaping security policies and responding to threats. Very little of that data is tailored to their organizations' unique profile or integrated with their existing security intelligence systems. The result is a gap between the collection of cyber security intelligence and the application of that intelligence to ongoing security operations.

Enabling interoperability between iSIGHT Partners and the HP ArcSight platform helps to close that gap. The HP-certified interoperability between the ThreatScape® API and HP ArcSight delivers technical indicators tied to intelligence analysis in the common event framework (CEF) format. Leveraging this interoperability, organizations can get immediate, automated connection of threat intelligence to events, prioritizing and expediting security actions.

"Gauging which security events are most important remains a fundamental oal for security operations teams across the globe," said Frank Mong, vice president and general manager, Solutions, Enterprise Security Products, HP. "Interoperability between HP ArcSight and ThreatScape will help SOC teams more quickly and efficiently prioritize events so they can focus more limited resources on the highest risk threats."

iSIGHT Partners ThreatScape® provides cyber threat intelligence and associated technical indicators gathered from 200+ native language speakers in 16 countries. This actionable insight keeps cyber security organizations one step ahead of threats, and enables security leaders to separate real issues from passing distractions.

"iSIGHT Partners customers using HP ArcSight are already ahead of the curve when it comes to leveraging security event data," said John P. Watters, chief executive officer, iSIGHT Partners. "Enabling organizations to connect security intelligence data from HP ArcSight with rich threat context is the next step in the maturation of cyber security to intelligence-led operations."

Intelligence with Intelligence

More than just a data feed, the ThreatScape® API provides robust, actionable threat intelligence:

  • Comprehensive: Conveys more than seven years of comprehensive adversary focused threat, technical, and vulnerability intelligence sourced globally.
  • Context-rich: Provides for significant enhancement to organizational security by injecting context into data-driven automated prioritization and decision-making.
  • Industry standard: REST-based with outputs in a variety of existing and emerging industry standard formats including STIX, JSON, and XML.
  • Easy to use: Includes a concise developer guide with references for commonly used programming languages like C, C++, C#, Python, PHP, and Java.
  • Secure: Communicates over the HTTPS protocol with standard key and digest-based authentication.

For more information on ThreatScape® or ThreatScape® API, please contact: info@isightpartners.com or go to www.isightpartners.com/threatscapeAPI

About iSIGHT Partners

iSIGHT Partners is the leading global provider of cyber threat intelligence. With 200+ experts in 16 countries and expertise in 24 languages, only iSIGHT can deliver the full context and intent of the most damaging threats, allowing security organizations to respond faster, defend proactively, and invest smarter. Find iSIGHT Partners on the web at www.iSIGHTpartners.com or email us at info@isightpartners.com


[ InfoTech Spotlight's Homepage ]


blog comments powered by Disqus

FOLLOW US

Subscribe to InfoTECH Spotlight eNews

InfoTECH Spotlight eNews delivers the latest news impacting technology in the IT industry each week. Sign up to receive FREE breaking news today!
FREE eNewsletter