The capabilities mean security teams can not only detect and analyse advanced threats on the network but also can look back at historical data in an automated way, analysing and correlating network events, while minimising the use of already stretched IT resources.
This includes answering questions like what/where/who was the first point of compromise, what other users in the network have been impacted, and where is the threat calling out to.
In short, teams can get more information and work faster and more strategically.
In this modern world of increasing volumes of threats, Trend Micro’s product is claimed to provide a way for security teams to simplify and prioritise threat information, accelerating the detection and response, and allowing focus on what matters.
In addition, Deep Discovery has enhanced the sharing of advanced threat information — or indicators of compromise — by leveraging standards-based formats and transfers. All compatible security solutions an organisation uses, including the entire Trend Micro product family and third-party products, will have the up-to-the-minute threat intelligence.
“Today’s organisations are being steadily submerged by threat alerts. Firefighting these individual problems means there is no time for the security team to focus on the bigger picture,” said Rob Ayoub, IDC program director, Security Products. “Solutions that address this challenge effectively can offer significant benefits – enabling IT security teams to do more with less and add true strategic value to the organisation.”
Advanced threat sharing and network analytics capabilities for Deep Discovery are now available globally.