ThreatQuotient has introduced the availability of ThreatQ Data Exchange, built on the foundation of its flexible data model and support for open intelligence sharing standards.
According to the firm, ThreatQ Data Exchange makes it effortless to set up bidirectional sharing of any and all intelligence data within the ThreatQ platform and scale sharing across multiple teams and organisations of all sizes.
ThreatQ Data Exchange offers the capability to granularly define data collections for sharing, and easily connect and monitor a network of external systems with which to share data.
“An analyst’s ability to efficiently share focused, curated threat intelligence has a significant impact on the success of their organisation’s overall security operations. ThreatQ Data Exchange is a powerful new component of the ThreatQ platform and is critical for achieving more control over the collection and dissemination of threat data,” said David Krasik, director, Product Management, ThreatQuotient.
Data collections are built using the existing Threat Library user interface and allow users to define the groupings of data they want to share, and can incorporate any data available in the Threat Library and are not limited to specific object types or attribute types. These data collections can be used for single connection feeds, reused for feeds to multiple external systems, and also used for internal analysis within the Threat Library and Custom Dashboards.
Krasik added, “ThreatQ Data Exchange allows our customers to create custom data feeds with their aggregated data to share within and external to their organisation. By providing the flexibility to share specific threat data without limitation or worry of exposing data that organisations prefer not to share, ThreatQuotient enables a collective understanding of threats and fosters a safer way to collaborate and share intelligence.”
Any multi-tiered threat intelligence sharing network where control and monitoring must be available to a global administrator will gain a faster and easier way to operationalise threat intelligence by using ThreatQ Data Exchange. For example: larger government entities with distinct intel teams and missions who continuously collaborate and share relevant intel; MSSPs that provide multi-sector or geo coverage to end customers; and large or medium-sized commercial organisations with a global presence or segmented business units. Individual teams can operate according to their specific requirements and missions, and collaborate with partners without limiting the breadth of data they want to share or leaking data they want to keep private.
ThreatQ Data Exchange is now available for users of the ThreatQ platform.
Discussion about this post