FireEye has announced the FireEye Threat Intelligence Engine, FireEye’s threat intelligence capability that both powers and leverages the company’s threat prevention products and service offerings. The FireEye Threat Intelligence Engine optimises the intelligence production cycle: capturing, processing, analysing and delivering intelligence to FireEye customers and analysts.
In addition, to help enterprises operationalise threat intelligence, FireEye also announced the Forward Deployed Analyst service that provides an on-site expert dedicated to infusing FireEye threat intelligence within the customer’s environment. The FireEye Threat Intelligence Engine continues to power FireEye’s solutions and the Forward Deployed Analyst is now generally available.
“A global network of millions of FireEye advanced threat sensors and Mandiant services’ unique decade-long visibility on the front lines of major cyber attacks, combined with a team of experienced researchers, analysts, and experts in diverse domains, enables us to provide threat intelligence that has context and relevance to organizations,” said Kevin Mandia, President at FireEye.
“We have significantly invested in, and further aligned our technology, people, and unparalleled threat data to form the FireEye Threat Intelligence Engine. With this capability, FireEye offers security teams detailed alert context and industry-leading intelligence about attacker campaigns, tools, idiosyncrasies, motivations, and much more. The FireEye Threat Intelligence Engine is the edge that equips our responders, powers our detection, informs our customers and lets them anticipate today’s increasingly sophisticated cyber threats.”
The FireEye Threat Intelligence Engine was created to address today’s significant threat intelligence challenges such as complexity, vast threat data processing requirements, increasingly large storage needs, difficulty automating analyst decision making, inadequate visibility and blind spots, knowledge pigeonholes, and poor threat intelligence modelling – all of which can lead to inaccurate conclusions.
Leveraging a combination of rich security data sources, intelligence generation technology, and expertise, the FireEye Threat Intelligence Engine boosts FireEye threat intelligence production capability. The FireEye Threat Intelligence Engine not only increases FireEye’s threat intelligence research production, but with each of FireEye’s threat prevention products and service offerings now powered by the FireEye Threat Intelligence Engine, FireEye can further put its threat intelligence to use for and by its customers.
A June 2015 report, Threat Intelligence and Its Role Within Enterprise Cyber security Practices, by the Enterprises Strategy Group found that 32% of organisations blocked legitimate network traffic as a result of problems with threat intelligence collection and analysis, and 31% report problems with threat intelligence integration and workflow.
“The combination of FireEye’s deep threat intelligence and dedicated analyst support is exactly what enterprises need to help detect advanced attacks and accelerate remediation actions,” said Jon Olstik, principal analyst at the Enterprise Strategy Group. “Making raw data operational is a key challenge that many understaffed enterprises struggle with today, and FireEye is well positioned to help solve their dilemma.”
Click below to share this article