FireEye, the intelligence-led security company, announced new cloud security innovations at RSA Conference 2020, including expanded capabilities within the FireEye Helix platform, as well as FireEye Messaging Security – a new offering that protects collaboration tools such as Microsoft Teams and Slack.
“A rapidly increasing number of organizations around the globe are operating within a multi-cloud environment,” said Grady Summers, Executive Vice President of Products and Customer Success at FireEye.
“While offering great flexibility, the cloud also presents unique challenges, as we see every day when responding to security incidents. Heightened visibility across these platforms is absolutely key. These new innovations deliver this advantage, so that our customers can help keep their cloud secure.”
FireEye brings entity behavior analytics to Helix
Behavioral analytics make it possible to identify threats by analyzing user behavior – an area that traditional cloud security controls typically bypass. As a native function within Helix, User and Entity Behavior Analytics (UEBA) implements machine learning to establish baseline behavior and alert to risky deviations.
This shift in security monitoring helps identify risky entities and protect organizations from insider threats, lateral movement, and other common cloud risks.
The benefits of these new capabilities include:
- Quickly access profiles of users and entities tracked by Helix
- Gain superior visibility into threats with automated correlation on entities and alerts
- Achieve a more granular view on detections with asset type and risk score information
- Expanded analytics capabilities are available to FireEye Helix customers at no additional cost.
FireEye integrates detection on demand with Helix
Announced in October 2019, FireEye Detection On Demand makes it easy for organizations to monitor cloud environments for malicious content.
Starting with insights gained from the cyber security frontlines, the cloud-native service is designed to use dynamic analysis and machine learning to identify threats in any cloud, SOC, or SIEM, as well as files uploaded to web applications or cloud file stores.
With this announcement, Detection On Demand customers can access capabilities seamlessly through Helix via an intuitive plug-and-play integration. Simply send content stored in the cloud to Detection On Demand for analysis and review an automatic report on the activity within Helix.
FireEye announces messaging security for collaboration solutions
Multi-channel collaboration tools have created a rapidly growing category in enterprise productivity. Services such as Microsoft Teams and Slack have witnessed widespread adoption, helping organizations achieve new heights in employee productivity.
However, this growth has not gone unnoticed by attackers looking to weaponize new cloud-based tools to deliver malicious content. As enterprises embrace new collaboration tools, FireEye is committed to expanding its protection against such threats.
Available as an early access preview for FireEye Email Security customers, FireEye Messaging Security is designed to reduce the risk of a cyber attack by scanning objects and links shared in the collaboration tool to identify zero-day malware and phishing links in real time.
Should a suspicious object be identified, the user will be alerted, helping to keep the threat from extending to cloud file-sharing services.
FireEye expands cloud security offerings with Cloudvisory
The cloud security innovations announced today come on the heels of the company’s January 2020 acquisition of Cloudvisory and its solutions for continuous visibility, compliance, and security policy governance for multi-cloud assets and containerized workloads.
The Cloudvisory solution is now offered as “FireEye Cloud Visibility” and is integrated into the Helix platform.
FireEye Cloud Visibility operates across AWS, Azure, Google Cloud, Kubernetes, OpenStack and VMware, as well as traditional virtualized and bare metal environments. Available stand-alone and integrated with FireEye Helix, the capabilities of this solution empower customers to manage multi-cloud environments through a single pane of glass.