Would you be interested in importing Open/Closed Source Cyber Threat Intelligence into Solarwind's Products

With Cyber Threat intelligence sharing starting to catch on in many industries. The idea is to give information security professionals the ability to report/alert/and even automate changes to security controls based on industry cyber threat intelligence. The new STIX and TAXII open standard along with Soltra Edge also provide a means to share threat intelligence across member organizations anonymously.

 

Solrta Edge is free to deploy, there are plenty of paid and free open sources to pull intelligence.

 

Some integration ideas with Solarwinds Products:

LEM - Threat Intel Sharing and receiving, actions/alerts based on rules (more data to correlate off of, and use actions to automate)

NCM - Automate updating firewall, routers, email gateway blacklists based on rules setup in LEM (more integration between Solarwinds products)

 

Feature Request: Threat Intelligence Feed

LEM Question Re: Using a Thread Intelligence Feed with LEM?

 

References:

https://www.soltra.com/

https://forums.soltra.com/

STIX -Structured Threat Information Expression

TAXII -Trusted Automated Exchange of Indicator Information

hail a taxii

https://www.fsisac.com/article/fs-isac-and-dtcc-announce-soltra-strategic-partnership

Poll Results
  • LEM Integration (another data point to correlate from, and share threat data - whos attacking me) (22%)
    40/179
  • NCM Integration (ability to Make changes to devices - add URLs, IPs to blacklists) (22%)
    40/179
  • FSM (Firewall stats) (7%)
    13/179
  • Multiple products (26%)
    46/179
  • Too Much Data (Information Overload) (22%)
    40/179

Comments

Archive Poll

Confirm archive of Would you be interested in importing Open/Closed Source Cyber Threat Intelligence into Solarwind's Products

Archiving expires a poll and removes it from the active polls list.

To restore an archived poll, edit the poll, change the dates as desired, and save the poll.

Delete Poll

Confirm delete of Would you be interested in importing Open/Closed Source Cyber Threat Intelligence into Solarwind's Products

Warning: This will delete the poll and all of its comments.

SolarWinds uses cookies on its websites to make your online experience easier and better. By using our website, you consent to our use of cookies. For more information on cookies, see our cookie policy.