SOURCE: ThreatStream

ThreatStream

September 22, 2015 08:00 ET

ThreatStream Announces Threat Intelligence Splunk App and Expands Breadth and Depth of Integrations

New ThreatStream Partnerships and Integrations Make for Most Comprehensive Vendor-Agnostic Threat Intelligence Solution Available

REDWOOD CITY, CA--(Marketwired - Sep 22, 2015) - ThreatStream®, the pioneer of an enterprise-class threat intelligence platform, today announced the ThreatStream Splunk App as well as new integrations with leading security solutions. The ThreatStream Splunk App gives customers broader analysis and investigation capabilities and increases real-time visibility into the detection, identification and remediation of threats. ThreatStream has also added new partner integrations to the ThreatStream Alliance Preferred Partner (APP) Store and the ThreatStream Optic™ threat intelligence platform. The addition of leading network security, endpoint security and threat intelligence providers makes the ThreatStream threat intelligence platform (TIP) the most comprehensive and vendor-agnostic on the market today.

"There's an insatiable need amongst enterprises in every industry today for information that is not only relevant and highly accurate, but also allow IT departments to be more robust and efficient," said Hugh Njemanze, ThreatStream CEO. "Today's threat and security analysts are overwhelmed with the amount of information available to them and are constantly faced with the arduous challenge to keep up with cyberattacks and security breaches. With our Splunk App, and the latest partner and technology integrations, ThreatStream organizations can have a single view of threats they can quickly make sense of, share and operationalize."

Cybersecurity teams are faced with the tremendous challenge of keeping up with cyberattacks and data breaches. ThreatStream continues to innovate and provide technology solutions to help customers to effectively and rapidly detect, investigate, respond to and remediate threats and security incidents. ThreatStream provides an enterprise-class threat intelligence platform, combining comprehensive threat data collection, prioritization and analytics with secure collaboration and sharing. ThreatStream is introducing new features, partnerships and integrations to directly address this challenge, making the task of rapidly identifying relevant and actionable intelligence and running analysis achievable for every enterprise.

Introducing the ThreatStream Splunk App
The ThreatStream Splunk App reinforces the ThreatStream commitment of providing enterprises with the latest tools and relevant partnerships. Through the ThreatStream Splunk App, IT teams benefit from richer context, visualization tools and investigation workflow for rapid detection of and protection from cyberattacks and security breaches. The App includes interactive dashboards for intuitive analysis and investigation, real-time visibility into zero-day and zero-week vulnerabilities and more.

Features of the ThreatStream Splunk App include:

  • Automatic alerting on critical indicator matches
  • Dashboards detailing event data associated with the known indicators of comprise (IOCs)
  • Interaction with the ThreatStream Optic platform for automatic updates

ThreatStream APP Store 2.0
Threat data feeds allow security teams to leverage third-party intelligence to improve an organization's ability to proactively protect itself from cyberattacks. Often purchased by security teams to supplement the threat intelligence being collected by in-house security controls, these feeds are an essential part of any organization's security strategy. This will give an enterprise instant visibility, rapid response and efficient analysis.

NEW ThreatStream APP Store 2.0 Features

  • APP Store 2.0 calculates and displays relevance scores to subscribed feeds
  • A light-weight software package is available to tie external threat intelligence to security events
  • ThreatStream Agent for Splunk Enterprise 6.2, 6.1
  • ThreatStream Agent for ArcSight ESM 6.5

NEW ThreatStream APP Store Partners

  • iSight Partners
  • Support Intelligence
  • Taia Global
  • Threat Recon

The Most Robust Partner Integrations of Any Threat Intelligence Platform
ThreatStream provides a broad portfolio of integrated solutions that deliver unmatched visibility and continuous advanced threat protection to marketing-leading SIEMs, IDS/IPS, firewall and end-point solutions. The ability to inject machine-readable threat intelligence into your existing security solutions and correlate it with local data increases the velocity and accuracy of threat detection and enhances an organization's ability to respond to the most targeted attacks.

NEW ThreatStream Optic Platform Integrations now Generally Available:

  • Bit9+ Carbon Black
  • Cloudera Impala
  • Infoblox
  • Palo Alto Networks
  • QRadar
  • Tanium

For more information on the latest ThreatStream features and integrations, please visit:

About ThreatStream
ThreatStream® is the pioneer of an enterprise class Threat Intelligence Platform, combining comprehensive threat data collection, prioritization, and analytics with secure collaboration in a vetted community. Offering the broadest enterprise security infrastructure integration available, ThreatStream enables organizations to proactively identify and combat cyber threats targeting their operations. Headquartered in Redwood City, California, the company is privately held and has received venture capital backing from General Catalyst Partners, Google Ventures, Institutional Venture Partners, Paladin Capital Group and individual investors. To learn more, visit www.threatstream.com and follow us on Twitter @threatstream.

Contact Information

  • Press Contact
    Travis Anderson
    10Fold for ThreatStream
    (925) 271-8227
    Email Contact

Multimedia