THE CHALLENGE Traditional security controls are insufficient in protecting networks from today’s onslaught of dynamic cyber threats. This is due to the fact that they operate with too narrow a view of information regarding threats. This is why more security organizations are implementing threat intelligence as a critical element of their security operations. However, as organizations use threat intelligence, many experience challenges operationalizing it. Challenges include aggregating and managing multiple threat feeds, integrating threat intelligence into security operations, and taking action with threat intelligence in existing controls. THE SOLUTION The Bandura Cyber Threat Protection platform is a cloud-based solution that eliminates these challenges enabling organizations of all sizes and security maturity levels to aggregate, integrate, and act using threat intelligence in an easy, automated, open, and scalable way. Our cloud-based Threat Intelligence Protection platform aggregates threat intelligence from multiple sources, integrates threat intelligence from any source in real time, and takes action on threat intelligence at near line speed. HOW IT WORKS The Bandura Cyber cloud-based Threat Intelligence Protection platform consists of three components including a cloud-based Actionable Threat Intelligence Engine, Bandura Cyber Threat Intelligence Gateways (TIG), and the Global Management Center and API suite. THREAT INTELLIGENCE PROTECTION PLATFORM DATA SHEET BENEFITS ■ Strengthen network security defenses by proactively blocking malicious IP and domain threats using massive volumes of threat intelligence ■ Reduce workload on your security staff through alert reduction and by automating threat intelligence data management and enforcement policies ■ Increase the ROI of threat intelligence investments by taking proactive action ■ Complement and get more out of your next-generation firewall investment Real Time Data-stream INTEGRATES threat intelligence from ANY SOURCE in real time SIEM IP and Domain Indicators IP and Domain Indicators Custom Solution Saas Based Global Management Center Visibility | Management | Control Bandura Cyber AGGREGATES threat intelligence from MULTIPLE sources Bandura Cyber Threat Intelligence Gateway (TIG) makes threat intelligence ACTIONABLE On-Premise Virtual In the Cloud APIs APIs Commercial Government Open Source ISAC/ISAO Endpoints TI Platforms Network SIEM/SOAR Purposely API-driven,FLEXIBLE Integration TIG • Reputation • Blacklists • Whitelists • GEO-IP • ASN Filters network traffic based on over 150+ MILLION UNIQUE IP and domain threat intel indicators GMC Threat Intelligence Protection Platform © 2020 Bandura Cyber. All rights reserved. [email protected] www.banduracyber.com
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
THE CHALLENGETraditional security controls are insufficient in protecting networks from today’s onslaught of dynamic cyber threats. This is due to the fact that they operate with too narrow a view of information regarding threats. This is why more security organizations are implementing threat intelligence as a critical element of their security operations. However, as organizations use threat intelligence, many experience challenges operationalizing it. Challenges include aggregating and managing multiple threat feeds, integrating threat intelligence into security operations, and taking action with threat intelligence in existing controls.
THE SOLUTIONThe Bandura Cyber Threat Protection platform is a cloud-based solution that eliminates these challenges enabling organizations of all sizes and security maturity levels to aggregate, integrate, and act using threat intelligence in an easy, automated, open, and scalable way. Our cloud-based Threat Intelligence Protection platform aggregates threat intelligence from multiple sources, integrates threat intelligence from any source in real time, and takes action on threat intelligence at near line speed.
HOW IT WORKSThe Bandura Cyber cloud-based Threat Intelligence Protection platform consists of three components including a cloud-based Actionable Threat Intelligence Engine, Bandura Cyber Threat Intelligence Gateways (TIG), and the Global Management Center and API suite.
THREAT INTELLIGENCE PROTECTION PLATFORMDATA SHEET
BENEFITS
■ Strengthen network security defenses by proactively blocking malicious IP and domain threats using massive volumes of threat intelligence
■ Reduce workload on your security staff through alert reduction and by automating threat intelligence data management and enforcement policies
■ Increase the ROI of threat intelligence investments by taking proactive action
■ Complement and get more out of your next-generation firewall investment
Real TimeData-stream
INTEGRATES threat intelligence fromANY SOURCE in real time
SIEM
IP and DomainIndicators
IP and DomainIndicators
Custom Solution
Saas Based GlobalManagement Center
Visibility | Management | Control Bandura Cyber AGGREGATES threatintelligence from MULTIPLE sources
Bandura Cyber Threat Intelligence Gateway(TIG) makes threat intelligence ACTIONABLE
On-Premise
Virtual
In the Cloud
APIs APIs
Commercial Government Open Source ISAC/ISAO
Endpoints TI Platforms Network SIEM/SOAR
Purposely API-driven,FLEXIBLE Integration
TIG• Reputation• Blacklists• Whitelists• GEO-IP• ASN
Filters network traffic based on over 150+ MILLION UNIQUE
IP and domain threat intel indicators
GMC
Threat Intelligence Protection Platform
© 2020 Bandura Cyber. All rights reserved. [email protected] www.banduracyber.com
© 2020 Bandura Cyber. All rights reserved. [email protected] www.banduracyber.com
Actionable Threat Intelligence (ATI) Engine: Bandura Cyber’s cloud-based ATI Engine aggregates threat intelligence from multiple sources and integrates threat intelligence from any source in real-time. The ATI Engine is an open platform that is built on a powerful suite of APIs and supports open standards like STIX/TAXII enabling easy integration with Threat Intelligence Platforms (TIPs), SIEMs, SOARs, endpoint, network and other security solutions.
Threat Intelligence Gateways (TIG): Bandura Cyber is the pioneer and market leading provider of Threat Intelligence Gateways (TIGs). The Bandura Cyber TIG filters inbound and outbound network traffic based on a massive volume of IP and domain indicators from a wide array of threat intelligence sources. Bandura Cyber TIG can filter traffic based on over 150 million unique IP and domain indicators far surpassing the capabilities of next generation firewalls.
Global Management Center (GMC) & API Suite: Organizations can interface, configure, and manage the Bandura Cyber Threat Intelligence Protection platform via our cloud-based Global Management Center application or via a powerful suite of APIs.
MAKE THREAT INTELLIGENCE ACTIONABLE
Flexible, Subscription Licensing Model: The Bandura Cyber Threat Intelligence Protection platform is licensed on a flexible, subscription-based model based on protected network throughput. Standard and Enterprise Software subscriptions are available for throughputs of 500 Mbps and 1-3 Gbps with annual and three-year subscription terms.
Deployment: The Bandura Cyber Threat Intelligence Protection platform is currently available for on premise network deployments and in late 2020 will be available for cloud network deployments. For on premises deployments, Bandura Cyber offers optimized, commercial, off-the-shelf hardware appliances.
ABOUT BANDURA CYBERBandura Cyber helps organizations protect their networks by making threat intelligence actionable in an easy, open, automated, and scalable way. Our cloud-based Threat Intelligence Protection platform aggregates threat intelligence from multiple sources, integrates threat intelligence from any source in real time, and takes action on threat intelligence at near line speed. Organizations are using Bandura Cyber’s solution to strengthen network protection, reduce manual staff workload and increase ROI on existing security investments including threat intelligence and next-generation firewalls.
Bandura Cyber Hardware Appliances 1G 1GX
Hardware Dell PowerEdge R240 Dell PowerEdge 340
Bridge Pairs Single Dual
IP and Domain Blocking 150M at near line speed 150M at near line speed
Hot-Swappable No Yes
Processor Intel Xeon Intel Xeon
RAM 16 Gb 16 Gb
Storage 480 Gb SSD 480 Gb SSD
Bridging interface1Gbps Copper RJ45 or Short Run Fiber
1Gbps Copper RJ45 or Short Run Fiber
Bypass Yes (Silicom) Yes (Silicom)
Management interface 10/100/1000 Copper RJ45 10/100/1000 Copper RJ45
Form Factor 1U Rackmount 1U Rackmount
Dimensions (w x d x h) 17.1”W x 23.5”D x 1.7”H 17.1”W x 23.5”D x 1.7”H
Unit Weight (lbs) 29.9 lbs 29.9 lbs
Power Supply Single 250W Dual (Redundant) 350W
Bandura Cyber Threat Intelligence Protection Subscriptions
Standard Enterprise
TIG OS X X
TIG OS Maintenance X X
Cloud-based Global Management Center (GMC) X X
Support
Standard (8x5) X
Enterprise (24x7) X
Threat Intel Feeds
Webroot BrightCloud Reputation X X
Open Source Threat Feeds X X
Government Threat Feeds X X
ISAC/ISAO Threat Feed Integrations* X X
DomainTools Malicious Domain Blacklist XProofPoint Emerging Threats IP & Domain Reputation X
IntegrationsThreat Intelligence Platforms, SIEM, SOAR, etc. X
* Available for Members of Specific ISAC/ISAOs
Related Documents
