rapidPHIRE Terminus Endpoint solution bridges rapidPHIRE Cyber Intelligence Platform Network Traffic Analytics (NTA) down to the endpoint via an API to connect into a rich security eco-system of endpoint patch management and security solutions such as Endpoint Detection and Response (EDR). This integration brings together through a “single pane view” your entire corporate network visibility allowing security teams to quickly detect, assess, and respond to cyber attacks. Currently, rapidPHIRE Terminus is fully integrated and bundled with the following vendors:
Tanium gives the world’s largest enterprises and government organizations the unique power to secure, control and manage millions of endpoints across the enterprise within seconds. Serving as the “central nervous system” for enterprises, Tanium empowers security and IT operations teams to ask questions about the state of every endpoint across the enterprise in plain English, retrieve data on their current and historical state and execute change as necessary, all within seconds. With the unprecedented speed, scale and simplicity of Tanium, organizations now have complete and accurate information on the state of endpoints at all times to more effectively protect against modern day threats and realize new levels of cost efficiency in IT operations.
Tanium arms IT operations teams with 15-second visibility and control over every endpoint to maximize asset visibility, minimize unnecessary costs, automate operational tasks with confidence and make better decisions.
The Tanium Endpoint Platform includes:
- Tanium Connect is an integration layer that provides immediate and current endpoint data to enrich any number of external or third-party systems like SIEMs, log analytics tools, help desk ticketing systems, CMDBs and big data clusters.
- Tanium IOC Detect provides the most adaptable and integrated threat detection solution available. Tanium IOC Detect can evaluate complex indicators of compromise (IOC), which may contain dozens of attributes like filenames, registry settings, IP addresses, MD5 hashes or even observable suspicious behaviors, on endpoints across networks of any size and return back results in seconds.
- Tanium Trace continuously records endpoint activity and equips security incident responders with the agility to easily pivot from single endpoint forensic analyses to accurate enterprise-wide searches for historical data across millions of endpoints in seconds, or vice versa.
- Tanium Patch successfully deploys patches across every endpoint with unprecedented speed and reliability, regardless of the size of the environment. Define custom workflows and schedule patches based on advanced rules or exceptions, including whitelists, blacklists, dynamic computer groups and patch lists.
More information is available at www.tanium.com or follow them on Twitter at @Tanium.