ThreatStream OPTIC is the first platform of its kind – a community-vetted cyber intelligence platform for enterprises and government agencies, which aggregates and analyzes indicators-of-compromise (IOC). Once a new IOC is discovered, OPTIC categorizes it and ranks it for severity and relevance using data analytics to identify relationships with known threats. The planned integration would enable CounterACT to obtain threat intelligence from ThreatStream and then apply a policy-based response to mitigate threats arising from suspicious endpoints and possibly trigger other third-party controls.
The ForeScout CounterACT platform enables access control, mobile and bring your own device (BYOD) security, endpoint compliance and threat management. The solution identifies, classifies and applies network enforcement and endpoint remediation policy to managed and unmanaged users, devices, systems and applications – in real time and without requiring agents.
The planned interoperability between each company’s solution will leverage ForeScout’s ControlFabric architecture, which enables ForeScout CounterACT and other IT solutions to exchange information and more efficiently mitigate a wide variety of network, security and operational issues. As a result, customers can achieve continuous monitoring and mitigation capabilities that better leverage their infrastructure investments and optimize their IT resources.
“The ThreatStream community-vetted approach to threat intelligence adds another layer of context to enhance ForeScout CounterACT’s controls and facilitates policy-based response to help our customers take more informed and timely actions to cyberthreats,” said Sam Davis, vice president of Business Development at ThreatStream. “Because of this, joining ForeScout’s ControlFabric partner ecosystem was a logical choice. The planned interoperability provides a proven, open and holistic approach to next generation network security.”