Nozomi Networks collaborates with Mandiant

With the general availability of the Nozomi TI Expansion Pack, critical infrastructure organizations now have access to both Nozomi Networks and Mandiant threat intelligence services, integrated to strengthen threat visibility and better defend cyber physical systems and processes.

  • Thursday, 29th August 2024 Posted 2 months ago in by Phil Alsop

Nozomi Networks has introduced the Nozomi TI Expansion Pack. Powered by Mandiant Threat Intelligence. The federated solution helps strengthen and streamline the way industrial and enterprise CISOs and their teams anticipate, diagnose and respond to cyber threats across all their critical business operations.

With the Nozomi TI Expansion Pack, Nozomi Networks customers now have the option to enrich Nozomi Networks threat intelligence with Mandiant Threat Intelligence to gain more comprehensive access to real-time information about threats to their IT, OT and IoT systems.

“The cybersecurity threat landscape is rapidly evolving, with attacks growing in both number and impact enterprise-wide,” said Edgard Capdevielle, Nozomi Networks CEO. “To minimize risk and maximize operational resilience, CISOs and their security teams need comprehensive solutions that enable them to quickly assess and respond to threats across their IT, OT and IoT systems. We are pleased to be able to give our customers the option to easily incorporate Mandiant’s world-class threat intelligence as part of a whole solution that delivers superior security outcomes.”

“For nearly a decade, Mandiant and Nozomi Networks have partnered to deliver advanced, AI-powered OT and IoT security solutions to customers,” said Melissa Smith, Google Cloud’s Head of Strategy & Technology Partnerships. “This latest expansion is another critical step in our journey to combine threat intelligence sources and defenses to deliver the best possible security outcomes for the world’s critical infrastructure. By blending Mandiant’s threat intelligence and expertise with Nozomi Networks’ OT threat intelligence and tools, we can enable critical infrastructure organizations to enhance their threat intelligence and investigations for a stronger defense.”

Nozomi TI Expansion Pack, Powered by Mandiant

Nozomi Networks customers who wish to gain comprehensive access to real-time information about threats to their IT, OT and IoT systems now have access to an integrated threat feed that combines the breadth and depth of Mandiant’s threat intelligence with Nozomi Networks’ industry-leading OT threat intelligence. The Nozomi TI Expansion Pack extends Nozomi Networks’ advanced OT and IoT threat intelligence by providing organizations with a deeper understanding of the coinciding IT threat landscape. This makes it possible to holistically monitor and respond to emerging threats for the strongest possible security outcomes.

Nozomi Threat Intelligence Cards

Vantage Threat Cards, also announced today, are a new presentation capability in Nozomi Vantage, the company’s cloud-based OT/IoT cyber management console.

Vantage Threat Cards revolutionize the way users access and derive value from threat intelligence feeds. These cards logically cluster and organize threat data, offering instant access to critical information such as:

● Threat descriptions

● First and last seen dates

● Exploitation status and vectors

● Targeted industries and countries

● MITRE ATT&CK details

● Mitigation suggestions

● And more

Users can swiftly narrow down threats by filtering based on specific countries and regions, ensuring they receive the most relevant information for their needs.

Vantage Threat Cards empower OT and IoT cyber teams to quickly scan and filter key threat information, significantly speeding up response times and enhancing accuracy. Analysts can easily input an IP address, domain name, hash, or threat actor alias to identify any associated rules, streamlining the identification process.

The integration of Mandiant Threat Intelligence will be used throughout the Vantage solution to enhance our offering even further. Updates to the vulnerability data include:

● Improved CVSS mapping

● Detailed summaries

● Lists of vulnerable products

● Exploitation details

● MITRE ATT&CK details

● Workarounds and vendor fixes

● Links back to Threat Cards and malware groups

These enhancements ensure comprehensive coverage and deeper insights into vulnerabilities, enabling more effective threat management.

The Nozomi TI Expansion Pack is available now for customers using Nozomi Networks’ on-premises and cloud-based monitoring solutions. Vantage customers have the added benefit of accessing the new threat intelligence feed through Nozomi Threat Cards.

Guardz expands in EMEA

Posted 3 days ago by Phil Alsop
Through a new partnership with Infinigate Cloud, Guardz will help to secure SMBs and support the MSP community across EMEA.
Channel partners can now use customised AI assistants, powered by ArrowSphere AI, to reinvent the way they manage business operations and engage with...
Global system integrator won over by simplicity, security and speed of the Cloudbrink service.
This global service forms part of the recently launched Intelligent Security portfolio and increases Logicalis' proactive threat-hunting capabilities...
Cybersecurity expert recognised for its continued innovation and dedication to application security management with double award win.

Pax8 unveils Pax8 Voyager Alliance

Posted 5 days ago by Phil Alsop
Pax8, the cloud commerce marketplace, has introduced Pax8 Voyager Alliance, its new partner programme that provides global partners with a modern...

Exclusive Networks and Druva partner

Posted 1 week ago by Phil Alsop
Exclusive Networks, the trusted global cybersecurity specialist, has signed an EMEA wide partnership with Druva, a leading provider of data security...
UK Connect will be offering Ericsson Enterprise 5G, including private 5G and enterprise coverage across the UK. As a member of Ericsson’s five-star...