McAfee integrates advanced analytics

McAfee has introduced new endpoint and cloud solutions that go beyond machine learning to take advantage of the speed and accuracy of advanced analytics, deep learning and artificial intelligence, and increase efficiency of security operations. Cyber threats and the data needed to defend against them continue to increase, overwhelming security teams and driving the need for open, efficient security operations. McAfee’s new solutions make use of the automation, reasoning and data curation uniquely provided by advanced analytics technologies, allowing security teams to easily discover and assess data and root out threats. Through human-machine teaming and an open and interoperable cybersecurity platform, McAfee proves ‘Together is power,’ with collaborative security that defends against shared adversaries. 

“Security teams are increasingly overwhelmed by the complexity they face in their environments which hinders their ability to defend against the growing number of threats,” said Chris Young, CEO of McAfee. “McAfee is acting on our ‘Together is power’ principle with collaborative security that combines the unique advantages of people, machines and partners enabling teams to be situationally aware of security events and take swift action to thwart assaults, from the endpoint to the cloud.”

Enhanced Security Operations with Analytics

A recent McAfee survey discovered the most effective Security Operations Centers (SOCs) are analytics driven, with proactive threat hunting and automated investigative workflows creating an ongoing progression towards increasingly advanced security management. Such effectiveness relies on the implementation of advanced analytics technologies, machine learning, deep learning and artificial intelligence, to curate and visualize threat data so security analysts can make sense of it in a short amount of time.

“When organisations are uncertain about the value or insights inherent in their data — or are confronted with new information they don't know how to interpret — machine learning can help discover business value where they may not have been able to before,” Carlton E. Sapp, a Gartner research director, wrote in a January 2017 report. “The capability to transform data into actionable insight is the key to a competitive advantage for any organisation. But the ability to autonomously learn and evolve as new data is introduced — without explicitly programming to do so — is the holy grail of business intelligence.” 

McAfee’s new product, McAfee Investigator utilizes both machine learning and artificial intelligence, to increase accuracy and confidence of investigations by automating data collection and empowering security analysts of varied experience to fully assess threats in less time.

New McAfee Investigator benefits include:

·         Accurate Threat Prioritization: McAfee Investigator allows analysts to focus on the most significant threats by using advanced analytics to automatically collect, piece together and visually present suspected attack intelligence.

·         Fast and Thorough Malware Investigations: Machine learning and artificial intelligence within McAfee Investigator continually learn evolving tactics, techniques and procedures to help analysts determine the right questions and explorations to yield efficient and accurate case closure.

·         Increased SOC Efficiency: McAfee Investigator coaches analysts into implementing advanced thought processes and increases productivity with easy case content sharing.

 

Multi-layer Endpoint Protection

Threats continue to grow consistently in both number and complexity given new attack vectors, tactics and actors. To help organisations stay ahead of even the most advanced cyber attacks, McAfee has evolved its endpoint solutions to include even more complex analytics, arming security teams with the data needed to thwart an attack.

New McAfee endpoint capabilities include:

·         Decision Making with Deep Learning: McAfee Endpoint Security (ENS) uses many layers of mathematical neurons, much like the human brain, to assist with decision making and ascertain potential threats.

·         Pre and Post Execution Machine Learning: McAfee endpoint machine learning reviews files both before and after they execute, gaining knowledge with new data and increasing protection against never-before-seen threats.

·         Machine Learning with Reach: Industry analysts note that many advanced analytics solutions require significant data to build and train models. Globally, McAfee protects more than 22 million nodes with machine learning, with 300 million sensors serving as a source to inform algorithms, providing a vast data set for analytics technologies to learn from.

 

Enhanced Security for Hybrid Cloud

Leading industry analysts expect hybrid cloud workloads to quickly become the predominant enterprise service architecture. With the benefits of this model, however, come new visibility, management and security challenges for organisations to contend with. The new McAfee Cloud Workload Security (CWS) addresses these issues, allowing organisations to eliminate blind spots with automation, secure critical workloads without slowing performance and simplify management with the McAfee ePolicy Orchestrator (McAfee ePO) console.