Industrial cybersecurity firm Nozomi Networks Inc. today announced the general availability of the Nozomi TI Expansion Pack, a new federated solution powered by Mandiant Threat Intelligence that helps strengthen the way industrial and enterprise security teams anticipate, diagnose and respond to cyber threats.
The new expansion pack, created as part of Nozomi’s expanded partnership with Google LLC’s Mandiant, was announced in May. It allows Nozomi customers to enrich Nozomi Networks threat intelligence with Mandiant Threat Intelligence to gain comprehensive access to real-time information about threats to information and operational technology and internet of things systems.
The expansion pack offers an integrated feed that combines Mandiant’s threat intelligence with Nozomi’s OT threat intelligence and, the company says, provides organizations with a deeper understanding of the IT threat landscape.
“For nearly a decade, Mandiant and Nozomi Networks have partnered to deliver advanced, AI-powered OT and IoT security solutions to customers,” said Melissa Smith, head of strategy and technology partnerships at Google Cloud. “This latest expansion is another critical step in our journey to combine threat intelligence sources and defenses to deliver the best possible security outcomes for the world’s critical infrastructure.”
Alongside the new integrated support for Mandiant, Nozomi also today announced Vantage Threat Cards, a new presentation capability in Nozomi Vantage, the company’s cloud-based OT/IoT cyber management console. The cards are claimed to revolutionize the way users access and derive value from threat intelligence.
Vantage Threat Cards logically cluster and organize threat data, with the result being instant access to critical information such as threat descriptions, first and last-seen data, exploitation status and vectors, targeted industries, MITRE ATT&CK details and mitigation suggestions.
With the cards, users can narrow down threats by filtering based on specific countries and regions, ensuring they receive the most relevant information for their needs. The cards can also be used by OT and IoT cyber teams to scan and filter key threat information quickly to speed up response times and enhance accuracy.