Trellix has announced the launch of Trellix Endpoint Security Suite. Trellix Endpoint Security Suite’s products and advanced capabilities empower Security Operations Center (SOC) analysts with superior visibility and control in a single pane of glass to proactively secure all endpoints.
Endpoint security is foundational for any organisation’s security program and the baseline for securing the enterprise, as each endpoint serves as an entry point into the business.
“In its approach to unified security, Trellix is aiming to be outcome-focused,” said Michael Suby, Research Vice President, Security & Trust, IDC. “From IDC’s perspective, we concur and reinforce that one of the outcomes should be methodically reducing cyber risk.”
The Trellix Endpoint Security Suite is comprised of Trellix Endpoint Security (ENS), Trellix Endpoint Detection and Response (EDR), and Trellix Endpoint Forensics.
Key capabilities of the suite:
- Endpoint protection optimisation at scale: proactive attack surface management; a rich and full-featured threat prevention stack
- Effective and efficient alert triage and response: alerts and incidents triage and remediation; AI-guided investigation for faster response
- Forensics and root cause analysis: powerful tool provides a deeper understanding of threats; improves detection and controls in the future
- Solid foundation: extensible solution with broad and deep coverage for endpoints; natively integrated with the Trellix XDR engine
At the RSA Conference this week, Trellix is previewing a set of features available in Q3:
- Simplified endpoint security management: single-step deployment on all endpoints
- Better integrated forensics: integration of forensics artifacts into the management and response consoles
- Extended support: support for Apple Silicon, extended support for MITRE framework, and FedRAMP certification
“Endpoint remains the first line of defence for every organisation,” said Aparna Rayasam, Chief Product Officer of Trellix. “To strengthen operational resiliency, organisations need a seamless, comprehensive solution for endpoint protection, detection, and response. By integrating endpoint detection and response workflows with deep forensic capabilities, Trellix Endpoint Security Suite is the best solution to effectively manage endpoint security.”
Meanwhile, Trellix has also announced it has expanded its Threat Intelligence portfolio. The new offerings include Vulnerability Intelligence and Trellix Intelligence as a Service.
Through a new partnership with Intel 471, Trellix Insights and Trellix Advanced Threat Landscape Analysis System (ATLAS) customers will add underground malware insights. This new intelligence feed will complement Trellix’s native threat intelligence capability of over 2,500 threat campaigns and 250 threat groups, bringing increased contextual intelligence to global customers.
“Threat intelligence is at the heart of cyber defence, serving as the source of truth for cybersecurity practitioners,” said Joseph Tal, Senior Vice President, Trellix Advanced Research Center. “Understanding adversaries in a highly dynamic landscape requires 24/7 insights tailored to organisations’ specific needs. An expanded Trellix Threat Intelligence portfolio will offer breadth and depth of intelligence and geopolitical awareness accessible to organisations of all sizes.”
“Intel 471 is proud to be a Trellix partner,” said Jason Passwaters, CEO of Intel 471. “Our Trellix partnership will enable integration of Intel 471’s cyber intelligence into the Trellix Threat Intelligence portfolio, empowering organisations across the globe to better counter the threat of cybercrime.”
Trellix’s new Threat Intelligence offerings include:
- Vulnerability Intelligence: Trellix Insights now goes beyond the Common Vulnerability Scoring System (CVSS) on critical vulnerabilities with Vulnerability Intelligence enrichment from the Advanced Research Center experts. These capabilities are further strengthened by the inclusion of data from the U.S. Cybersecurity & Infrastructure Security Agency’s (CISA) Known Exploited Vulnerability (KEV) catalogue, which provides users with information on vulnerabilities’ exploitation status, remediation recommendations, and prioritisation guidance. This information allows users to filter alerts and focus on remediating the most impactful vulnerabilities.
- Threat Intelligence Services: With new tiered offerings, global organisations can now leverage Trellix Intelligence as a Service, a bespoke offering previously available to an exclusive set of government and intelligence agencies. The service offers a direct link to Trellix threat experts to gain customised threat intelligence from the Trellix Advanced Research Center. Users get threat efficacy reporting, inquiry service, executive briefings, and security assessments to optimise threat prevention and situational awareness, delivering a more actionable view of threat exposure.
“Trellix’s partnerships with public and private organisations are critical to their ability to deliver comprehensive threat intelligence products and services,” said Christopher Kissel, Research Vice President of IDC’s Security & Trust Products group. “With the importance of actionable threat intelligence growing in XDR, Trellix’s approach represents a powerful and effective way for organisations to stay ahead of potential multi-vector threats.”