sb-eu logo
Story image

SecureWorks speeds up threat detection through analytics

30 Apr 2019

SecureWorks has embraced software-as-a-service (SaaS) to protect customers and transform the detect-investigate-respond process towards cyber threats.

This week SecureWorks released Red Cloak Threat Detection and Response (Red Cloak TDR), a security analytics platform built with more than 20 years of threat intelligence from customer endpoints, network, and cloud deployments.

Red Cloak TDR is the first in a suite of Red Cloak SaaS solutions to improve customers’ security operations, and ultimately to help customers become more self-sufficient to defend against current and emerging threats.

"Today's well-armed and coordinated adversaries operate in a collaborative and sophisticated manner, yet the industry continues to rely on disparate tools and siloed, manual investigations," comments SecureWorks SVP of business and product strategy, Wendy Thomas.

Those environments can often leave gaps where threats can remain undetected for days, weeks, months, or even years.

Red Cloak TDR integrates Secureworks' threat intelligence which is compiled from billions of events across thousands of security environments and continuously updated to include new and emerging threats. 

Additionally, Red Cloak TDR integrates data from a variety of third-party sources to give organisations the best possible understanding of their threat landscape.

Additionally, Secureworks' cloud-native application speeds investigations with intuitive workflows and automation, as well as a chat feature that gives users direct access to Secureworks' team of experienced cybersecurity experts. 

"Red Cloak Threat Detection and Response automates the investigation of high fidelity alerts and integrates decades of experience, knowledge and threat intelligence so enterprises can rapidly take the right action and reduce business risk,” says Thomas.

Features at a glance:

  • Red Cloak TDR analyses activity from endpoint, network and cloud while reducing the number of false positives security professionals face. It detects advanced threats by correlating information from a variety of sources and threat intelligence feeds, integrating Secureworks' knowledge of threat actor behaviours, and applying machine learning to provide much-needed context about the threat. Red Cloak TDR builds trust in security alerts and frees security teams to focus on threats that matter.
  • Designed around Secureworks' defense in concert methodology, Red Cloak TDR unifies security environments and analyses all relevant signals in one place. Users gain additional context so they can quickly and accurately judge the implications of each event.
  • By working on investigations together, teams can quickly reach conclusions with confidence. The built-in chat feature can be used right from the user interface during an investigation to get expert help based upon years of experience hunting, analysing and defending against threats.
  • The application allows for a quick, accurate, software-driven response that gives users the ability to automate the right action.
  • Because Red Cloak TDR is a cloud-based SaaS application, companies won't have the burden of installing on-premises hardware or maintaining software version upgrades. Updates, backups and tuning are covered.
  • Red Cloak TDR does not charge by data consumption, so subscribers are free to process the security-relevant data they need to keep their organisation safe.
  • Onboarding is quick and easy because the application is designed to easily integrate into an organisation's current control framework.
Story image
Forescout expands integrations with partner solutions
Expanded partnerships and integrations with Splunk, CrowdStrike and CyberArk allow for better IT and OT security posture for joint customers.More
Story image
Zerto launches security solutions for containerised applications
The company has launched its beta program of Zerto for Kubernetes (Z4K), an extension of its Zerto Platform, to support next-generation, cloud native applications.More
Story image
Data leakage concerns dominate cloud security perceptions - Bitglass report
How secure is the public cloud? That’s what many IT and security professionals are asking as data leakage becomes a pressing concern for organisations and their data protection strategies.More
Story image
The ultimate network security audit checklist
Experts project that losses and damage from cybercrime will skyrocket, with attacks ranging from spam and phishing to malware and spyware — all compromising the safety of sensitive data and proprietary information. These attacks can be minimised by performing network security audits regularly.More
Story image
Trend Micro integrates with AWS Gateway Load Balancer for improved security function
Cloud security firm Trend Micro has announced its hybrid cloud security integration with the newly launched AWS Gateway Load Balancer.More
Story image
With cyber-threats continuing to evolve, organisations need to remain in the fight in 2021
Teams can make improvements in 2021 by having a more comprehensive understanding of the threats that are out there and defining how they conduct operations to offer flexibility to adapt better.More