Boosting transformation and protection through threat visualisation

Anthony Perridge, Vice President International, ThreatQuotient.

Security remains an exciting, challenging, growth market. Digitisation increases the opportunity for the bad guys so the cyber security companies need to keep innovating and delivering. The downside of this is that constant change is hard to deliver and potentially expensive.

With digitisation the opportunity for the bad guys to exploit is huge, so effective security is essential. That is why organisations are augmenting traditional security detect and block with more proactive solutions. The goal is to anticipate attacks but this can only be done with threat intelligence and the ability to operationalise it. Given that all organisations will be breached at some point it is not just about protection. It is therefore also about resilience and the ability to recover quickly. 

CISO’s face the twin challenges of budget and availability of expertise. From an organisational perspective, a CISO needs to be a great communicator, both upwards and downwards within the organisation. Cyber security can get very technical, very quickly but the CISO’s stakeholders and sponsors do not take decisions or want to communicate that way. 

From a customer perspective, ThreatQuotient’s solutions address a key challenge which is the shortage of cyber expertise. The vendor does this through automation and delivering efficiency and effectiveness to security operations. Technology, simply put, is an enabler. It must be built or designed into rather than bolted on.

ThreatQuotient’s mission is to improve the efficiency and effectiveness of security operations through a threat-centric platform. By integrating an organisation’s existing processes and technologies into a single security architecture, ThreatQuotient accelerates and simplifies investigations and collaboration within and across teams and tools, supporting multiple uses cases including incident response, threat hunting, and serving as a threat intelligence platform. 

Through automation, prioritisation and visualisation, ThreatQuotient’s solutions reduce noise and highlight top priority threats to provide greater focus and decision support for limited resources.

The ThreatQ platform enables a shared understanding across teams and tools within an organisation’s defense infrastructure. It supports both reactive use cases as well as proactive use cases and orchestrating and synchronising threat intelligence across systems. 

ThreatQ’s top three differentiators are:

Customer-defined Prioritisation

ThreatQ ingests, normalises, de-dupes and correlates threat data and events from external and internal sources into a single Threat Library. What we do differently is that we provide customer controls so a company can customise scoring and prioritisation. 

Deep integrations and ecosystem

ThreatQ is an open and extensible platform built on APIs to integrate with any system or tool. This architecture allows for deep integrations and bi-directional data sharing, enabling the orchestration, automation and synchronisation of cyber threat intelligence across systems and teams. 

Go to Market

ThreatQuotient’s pricing and go to market models simplify the consumption of a TIP. Pricing is straight-forward without additional charges per integration or higher indicator counts. To address companies with less mature security operations we partner with MSSPs, jointly defining a threat intelligence service offering. 

By Anthony Perridge, Vice President International, ThreatQuotient.