Mandiant Advantage expands SaaS platform with new Mandiant Automated Defense module. The new SaaS functions that clients use frontline intelligence and expertise address the challenges of the modern SOC.
FireEye, Inc. (NASDAQ: FEYE), the intelligence-based security company, is expanding its Mandiant Advantage SaaS platform with a powerful, cross-vendor XDR feature. The new Mandiant Automated Defense module complements the Mandiant Threat Intelligence and Mandiant Security Validation modules.
Numerous alarms in the SOC
Companies struggle to constantly, quickly and accurately assess and review the multitude of alarms that are received by their Security Operations Centers (SOC) every day. In February 2021 alone, Mandiant Automated Defense reduced more than 52 billion alerts to fewer than 700 prioritized investigations. As a former Virtual Analyst product from Respond Software, Automated Defense provides Mandiant's expertise and intelligence in software form via an easy-to-use SaaS interface.
"Skilled labor shortages, overwhelming alarms, and misconfigured tools are challenges facing the modern SOC," said Chris Key, Executive Vice President of Products, Mandiant Solutions. “Our customers have asked us for a technology that embeds Mandiant's expertise and intelligence in their environments on a large scale. With Mandiant Automated Defense we have another product in our portfolio that is able to do just that. "
Automated defense module
Mandiant Automated Defense addresses the personnel, procedural and technological challenges that cybersecurity specialists in the SOC are confronted with. The tool enables security analysts to use data science and machine learning to classify alarms from the security stack quickly, in a scalable and constant manner. This automated assessment process is designed to enable the security team to prioritize and focus on the most relevant threats so that less time is wasted on false positives.
“Organizations are changing the way they manage their security operations,” observes Jon Oltsik, senior principal analyst and fellow, Enterprise Strategy Group. “With Respond Software, Mandiant has gained a pioneer in the area of security operations who supports security teams in better serving customers, increasing productivity and achieving higher operating results in the area of cyber security. Mandiant Automated Defense helps customers to work without restrictions - outside of their current tools and processes. "
Intelligence-based approach to security operations
Mandiant Advantage is an intelligence-based approach to security operations. Without increasing human expertise, it is impossible for companies to win the global fight against cybercrime. Mandiant Advantage bundles attacker and threat intelligence knowledge in accessible, automated solutions that immediately provide the scope and functionality that security teams need. The Mandiant Advantage SaaS platform supports more than 60 security technologies, cloud platforms and network management tools and works with best-of-breed and multi-vendor controls to provide first-class XDR functionality.
The Mandiant Advantage platform now comprises three modules:
- Client Threat Intelligence
- Mandiant Security Validation (formerly Verodin)
- Mandiant Automated Defense (formerly Respond Software)
More at FireEye.com
About Trellix Trellix is a global company redefining the future of cybersecurity. The company's open and native Extended Detection and Response (XDR) platform helps organizations facing today's most advanced threats gain confidence that their operations are protected and resilient. Trellix security experts, along with an extensive partner ecosystem, accelerate technology innovation through machine learning and automation to support over 40.000 business and government customers.
Matching articles on the topic