With these upcoming capabilities, Cloud Pak for Security will include access to six threat intelligence<\/a> feeds, 25 pre-built connections to IBM and third-party data sources, and 165 case management integrations – which are connected through advanced AI to prioritize threats, and automation playbooks to streamline response actions for security teams.
Sudeep Das, Technical Leader, IBM Security Systems, IBM India\/South Asia said – \"As cloud and remote work have dispersed the traditional IT perimeter, security response teams need deeper insights across hybrid cloud environments – including user, identity, and data-level security. Cloud Pak for Security offers a streamlined threat management lifecycle using advanced AI, analytics and automation. Further, it is a single, unified user interface that connects the entire threat management process via end-to-end workflows - from initial detection through response. Indian companies witnessed an average of ₹140 million total cost of data breach<\/a> in the 2020, an increase of 9.4% from 2019 as per our Cost of Data Breach report. These advancements in Cloud Pak for Security will augment the security posture of Indian organizations and empower them to get deeper intelligence by linking data-level insights and user behavior analytics with threat detection.”
As cloud adoption and remote work have dispersed the traditional IT perimeter, security response teams can benefit from deeper insights into security across hybrid cloud environments. User behavior, identities and data security have traditionally been siloed from threat management. With the upcoming new capabilities, Cloud Pak for Security will become the first platform in the industry to connect data-level insights and user behavior analytics with threat detection, investigation and response.
Today IBM is announcing capabilities to advance the Cloud Pak for Security even further, including:
1. Coordinated Threat Response + Data Security: IBM has developed a new industry-first approach to provide security teams with visibility into data activity, compliance and risk, without needing to leave their primary response platform. The new built-in data security hub, scheduled for general availability in Q4, allows analysts to quickly gain context into where their sensitive data resides across hybrid cloud environments, as well as who has access to it, how it is used, and the best way to protect it. Bridging the disconnect between data security and threat management can reduce the timeline for responding to data breaches, which currently take more than six months to identify and contain on average for recently surveyed organizations.
2. Access to Industry Leading Threat Intelligence: Cloud Pak for Security is expanding its collection of threat intelligence, helping clients detect early warning signs of active threat campaigns impacting companies around the world. In addition to IBM’s X-Force Threat Intelligence Feed, the platform will provide pre-built integrations for five additional threat intelligence feeds from third-party sources, including AlienVault OTX, Cisco Threatgrid, MaxMind Geolocation, SANS Internet StormCenter and Virustotal scheduled for general availability in Q4, and additional threat feeds expected to be added in 2021.
3. Dedicated Services and Support: IBM is launching new dedicated security services to help organizations modernize their security operations with Cloud Pak for Security, leveraging a holistic approach connecting products and services. With a wide range of flexible service options, IBM experts can help clients deploy and manage Cloud Pak for Security across any environment, including end-to-end threat management, managed security services, as well as strategy, consulting and integration support.
Open Connections Across the Security Ecosystem<\/strong>
Cloud Pak for Security leverages open technologies to create an interoperable foundation and deeper connections between the IBM and third-party tools. For instance, the platform uses STIX-Shifter, an open-source library that allows security analysts to search for threat indicators across all connected data sources with a single query. Additionally, Cloud Pak for Security is built on Red Hat<\/a> OpenShift, providing an open, containerized foundation that can be easily deployed across on-premise, public and private cloud environments.
This open approach allows Cloud Pak for Security to be more than simply a collection of security capabilities, but rather a platform to fully integrate security processes across tools and clouds. The platform uses advanced AI, analytics and automation to streamline the full lifecycle of threat management – including native capabilities for Security Information and Event Monitoring (SIEM), Threat Intelligence, User Behavior Analytics, Data Security and Security Orchestration Automation and Response. These capabilities are delivered through a single, unified user interface that connects the entire threat management process via end-to-end workflows, from detection through response.
Through IBM Security’s participation in the Open Cybersecurity Alliance, the company will continue to work with the community to advance the development and adoption of open technologies to make security more interoperable.
<\/body>","next_sibling":[{"msid":78672859,"title":"Zoom opens platform for paid events, following Facebook","entity_type":"ARTICLE","link":"\/news\/zoom-opens-platform-for-paid-events-following-facebook\/78672859","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"msid":78673337,"entity_type":"ARTICLE","title":"IBM advances Cloud Pak for security to manage cyber threats","synopsis":"The Open platform leverages AI and automation to streamline threat management across hybrid cloud environments and disparate security tools.","titleseo":"telecomnews\/ibm-advances-cloud-pak-for-security-to-manage-cyber-threats","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":110,"shares":0,"engagementtimems":550000},"Alttitle":{"minfo":""},"artag":"ETCIO","artdate":"2020-10-15 09:14:17","lastupd":"2020-10-15 09:14:59","breadcrumbTags":["IBM Security","Open-source model","data breach","risk management","IBM","Enterprise Services","cloud pak for security","threat intelligence","Red Hat","artificial intelligence"],"secinfo":{"seolocation":"telecomnews\/ibm-advances-cloud-pak-for-security-to-manage-cyber-threats"}}" data-authors="[" "]" data-category-name="" data-category_id="" data-date="2020-10-15" data-index="article_1">
读到
IBM的安全今天宣布了新的和即将到来的能力云Pak安全,包括首次允许公司检测的数据安全解决方案,应对和防止威胁到他们在混合云环境中最敏感的数据。为了统一之前断开连接的安全技术,IBM扩大了云安全包括Pak新的数据源,集成和服务,允许安全运营团队管理威胁全生命周期从一个控制台。
与这些即将到来的功能,安全将包括访问云Pak 6威胁情报提要,25个预构建连接到IBM和第三方数据源,和165年病例管理集成,通过先进的人工智能连接优先威胁,和自动化简化反应操作安全队的剧本。
Sudeep Das、技术主管、IBM安全系统,IBM印度/南亚说,“随着云计算和远程工作分散它周边的传统,安全响应团队需要在混合云环境,包括用户更深入的见解,身份,和数据级安全。云Pak安全提供了一个简化的威胁使用先进的人工智能管理生命周期,分析和自动化。进一步说,它是一个单一、统一的用户界面,连接整个威胁管理过程通过端到端的工作流程——从最初的检测响应。印度公司目睹了平均₹1.4亿的总成本数据泄露在2020年,比2019年增加了9.4%按我们的成本数据泄露的报告。这些进步在云安全将Pak增强印度组织的安全状况,让他们得到更深层次的智能连接数据级的见解和用户行为分析和威胁检测。”
随着云计算应用和远程工作分散它周边的传统,安全响应团队可以受益于更深的见解在混合云环境的安全。用户行为、身份和数据安全威胁管理一直是孤立的。即将到来的新功能,安全将成为第一个平台云Pak连接数据级的行业见解与威胁检测和用户行为分析,调查和响应。
今天IBM宣布功能进一步推进云Pak的安全,包括:
1。协调响应+数据安全的威胁:IBM开发了一个新的产业界首次与可见性数据方法来提供安全团队活动,合规和风险,而不需要离开他们的主要反应平台。新的内置数据安全中心,计划在第四季度总体可用性,允许分析师快速获得上下文到他们的敏感数据驻留在混合云环境,以及谁有权访问它,如何使用它,最好的方法来保护它。连接之间的脱节数据安全和威胁管理可以减少响应时间数据泄露,目前需要超过6个月平均识别并包含最近调查的组织。
2。进入行业领先威胁情报:云安全是扩大集Pak威胁情报,帮助客户发现早期征兆的活跃威胁活动影响世界各地的公司。除了IBM的X-Force威胁情报饲料,平台将提供预构建集成五额外的威胁从第三方情报源,包括AlienVault第一,思科Threatgrid, MaxMind地理位置,无互联网StormCenter和Virustotal计划在第四季度总体可用性,和额外的威胁源将被添加在2021年。
3所示。专用服务和支持:IBM推出新的专用安全服务来帮助组织现代化他们的安全与云Pak操作安全,利用整体的方法连接产品和服务。与各种灵活的服务选项,IBM专家可以帮助客户部署和管理云Pak安全在任何环境中,包括端到端的威胁管理、安全服务管理,以及战略咨询和集成支持。
打开的连接在安全生态系统
云Pak安全利用开放技术创建一个可互操作的基础和更深的IBM和第三方工具之间的连接。例如,平台使用STIX-Shifter,开源库,允许安全分析师寻找威胁指标在所有连接与一个查询数据源。此外,云安全是建立在Pak红色的帽子OpenShift,提供一个开放、集装箱基础,可以很容易地部署在本地,公共和私有云环境。
这种开放的态度允许云Pak安全不仅仅是安全功能的集合,而是一个平台,充分整合跨工具和云安全流程。平台采用先进的人工智能,分析和自动化来简化威胁的完整生命周期管理,包括本地功能安全信息和事件监测(SIEM),威胁情报、用户行为分析、数据安全性和安全业务流程自动化和响应。这些功能是通过一个单一的、统一的用户界面,连接整个威胁通过端到端的工作流管理过程,从检测到的反应。
通过IBM安全参与开放网络安全联盟,该公司将继续与社区推动的发展和采用开放技术来提高安全互操作。
与这些即将到来的功能,安全将包括访问云Pak 6威胁情报提要,25个预构建连接到IBM和第三方数据源,和165年病例管理集成,通过先进的人工智能连接优先威胁,和自动化简化反应操作安全队的剧本。
Sudeep Das、技术主管、IBM安全系统,IBM印度/南亚说,“随着云计算和远程工作分散它周边的传统,安全响应团队需要在混合云环境,包括用户更深入的见解,身份,和数据级安全。云Pak安全提供了一个简化的威胁使用先进的人工智能管理生命周期,分析和自动化。进一步说,它是一个单一、统一的用户界面,连接整个威胁管理过程通过端到端的工作流程——从最初的检测响应。印度公司目睹了平均₹1.4亿的总成本数据泄露在2020年,比2019年增加了9.4%按我们的成本数据泄露的报告。这些进步在云安全将Pak增强印度组织的安全状况,让他们得到更深层次的智能连接数据级的见解和用户行为分析和威胁检测。”
随着云计算应用和远程工作分散它周边的传统,安全响应团队可以受益于更深的见解在混合云环境的安全。用户行为、身份和数据安全威胁管理一直是孤立的。即将到来的新功能,安全将成为第一个平台云Pak连接数据级的行业见解与威胁检测和用户行为分析,调查和响应。
今天IBM宣布功能进一步推进云Pak的安全,包括:
1。协调响应+数据安全的威胁:IBM开发了一个新的产业界首次与可见性数据方法来提供安全团队活动,合规和风险,而不需要离开他们的主要反应平台。新的内置数据安全中心,计划在第四季度总体可用性,允许分析师快速获得上下文到他们的敏感数据驻留在混合云环境,以及谁有权访问它,如何使用它,最好的方法来保护它。连接之间的脱节数据安全和威胁管理可以减少响应时间数据泄露,目前需要超过6个月平均识别并包含最近调查的组织。
2。进入行业领先威胁情报:云安全是扩大集Pak威胁情报,帮助客户发现早期征兆的活跃威胁活动影响世界各地的公司。除了IBM的X-Force威胁情报饲料,平台将提供预构建集成五额外的威胁从第三方情报源,包括AlienVault第一,思科Threatgrid, MaxMind地理位置,无互联网StormCenter和Virustotal计划在第四季度总体可用性,和额外的威胁源将被添加在2021年。
3所示。专用服务和支持:IBM推出新的专用安全服务来帮助组织现代化他们的安全与云Pak操作安全,利用整体的方法连接产品和服务。与各种灵活的服务选项,IBM专家可以帮助客户部署和管理云Pak安全在任何环境中,包括端到端的威胁管理、安全服务管理,以及战略咨询和集成支持。
打开的连接在安全生态系统
云Pak安全利用开放技术创建一个可互操作的基础和更深的IBM和第三方工具之间的连接。例如,平台使用STIX-Shifter,开源库,允许安全分析师寻找威胁指标在所有连接与一个查询数据源。此外,云安全是建立在Pak红色的帽子OpenShift,提供一个开放、集装箱基础,可以很容易地部署在本地,公共和私有云环境。
这种开放的态度允许云Pak安全不仅仅是安全功能的集合,而是一个平台,充分整合跨工具和云安全流程。平台采用先进的人工智能,分析和自动化来简化威胁的完整生命周期管理,包括本地功能安全信息和事件监测(SIEM),威胁情报、用户行为分析、数据安全性和安全业务流程自动化和响应。这些功能是通过一个单一的、统一的用户界面,连接整个威胁通过端到端的工作流管理过程,从检测到的反应。
通过IBM安全参与开放网络安全联盟,该公司将继续与社区推动的发展和采用开放技术来提高安全互操作。
评论
现在评论 阅读评论(1)所有评论
找到这个评论进攻?
下面选择你的理由并单击submit按钮。这将提醒我们的版主采取行动