Our primary use case is for threat intelligence. We are feeding intelligent information from cybersecurity all over the world and letting them know how to actively protect their system.
IT Infrastructure Security Lead at South Consult / Phakalane Data Center
Real User
2021-04-01T09:44:00Z
Apr 1, 2021
IBM X-Force is a SaaS version. X-Force is integrated with a Security Intelligence Platform, but it's a SaaS version. In short, we use a platform called the a Security Intelligence Platform based on IBM Qradar SIEM, which is what we enrich from the X-Force engine so that we actually get threat intel from IBM X-Force. We also different leverage on content packs that we download from X-Force. We have thousands of rules that come out of the box with QRadar, which is the SIEM platform. But we need to leverage X-Force to get real time threats feeds and have an understanding of what will be happening, and get advisory on issues such as vulnerability numbers, malware names, MD5 hashes, IP addresses, and other characteristics to see if we have been compromised. We can check for * CVE or breach or malware threat to obtain more details regarding that coverage.
Threat Intelligence Platforms help organizations identify, analyze, and mitigate cyber threats through comprehensive data aggregation, real-time threat detection, and actionable insights.
These platforms offer advanced capabilities to gather threat data from multiple sources, enabling security teams to make informed decisions and respond promptly to potential threats. They integrate with existing security infrastructure and provide customizable dashboards for easier monitoring.
...
It's a threat intelligence platform, and we aim to enhance its intelligence by integrating additional security solutions.
Our primary use case is for threat intelligence. We are feeding intelligent information from cybersecurity all over the world and letting them know how to actively protect their system.
IBM X-Force is a SaaS version. X-Force is integrated with a Security Intelligence Platform, but it's a SaaS version. In short, we use a platform called the a Security Intelligence Platform based on IBM Qradar SIEM, which is what we enrich from the X-Force engine so that we actually get threat intel from IBM X-Force. We also different leverage on content packs that we download from X-Force. We have thousands of rules that come out of the box with QRadar, which is the SIEM platform. But we need to leverage X-Force to get real time threats feeds and have an understanding of what will be happening, and get advisory on issues such as vulnerability numbers, malware names, MD5 hashes, IP addresses, and other characteristics to see if we have been compromised. We can check for * CVE or breach or malware threat to obtain more details regarding that coverage.
The primary use case for the solution is for incident response and detecting threats. We are using the latest version of the exposed rack.