Enhances its Threat Management Platform with Security Orchestrator and cross-platform updates to provide intelligence-led detection, automated response, and unification of multivendor environments
FireEye has launched FireEye Security Orchestrator along with advanced features for Threat Analytics Platform (TAP), Email (EX/ETP) & Network (NX) Security, and Enterprise Forensics, simplifying and accelerating organizations’ abilities to detect and respond to threats. The FireEye Security Orchestrator provides organizations a “single pane of glass” technology from recently-acquired Invotas to respond to incidents, and integrates it with the enhanced intelligence-led FireEye Threat Management Platform. By unifying workflows across different security technologies and automating repetitive, manual processes, FireEye Security Orchestrator helps organizations reduce response times by an average of 98 percent and eliminates 99 percent of process errors, ultimately reducing overall risk exposure by 40 percent.
As per the press release, features of FireEye Security Orchestrator include courses of action; automation capabilities; attack lifecycle visualization; automation and documentation of manual processes; user-friendly reporting and analysis and Cyber Security Coalition partnerships and deep integrations with technology providers such as Blue Coat, BMC, CyberArk, HPE, IBM, MobileIron, PhishMe, Splunk, and many more to ensure unified workflows across any security environment.
New, intelligence-led capabilities for detecting and blocking business disruption exploits that enter organizations through spear phishing emails such as ransomware, sender impersonation fraud and credential harvesting will be available on the EX series in June and on Email Threat Prevention Cloud (ETP) in July. The new predictive capabilities also offer visibility into different intelligence, providing new ways for the responder to take action.
Updates to FireEye Network Security focus on two key areas of concern for customers today: detection for ransomware and uptime. FireEye has added new intelligence-led detection capabilities to its MVX engine that enable it to monitor files not just for malicious activity, but for behavioural patterns that signal malicious intent to help ensure uptime in the face of a ransomware attack, said the release.
David DeWalt, CEO and Chairman of the board, FireEye said, “As cyber threats developed more complex operations to successfully carry out their attacks, the security industry has created even more complexity through the number of technologies and alerts our customers must deal with. FireEye Security Orchestrator addresses the resource strain all security teams currently face with automation and an open platform based on the best intelligence, technology, and expertise. Combined with the new intelligence-led detection and response functions of our Threat Management Platform, we are solving not just for today’s threats by creating the future of security operations.”