• Home

  • Documents

  • Secureworks Taegis Delivers Security Analytics with Zscaler
3
Availability varies by region. ©2021 SecureWorks, Inc. All rights reserved. Secureworks integration with Zscaler helps you outpace and outmaneuver adversaries with precision, so you can adapt and respond to market forces and meet real-world business needs. Providing a unique combination of AI- powered insights and unrivaled Threat Intelligence with advanced correlation and analytics, you can experience better security, improved visibility, and rapid remediation, so you can get back to business. The Challenges With the sharp increase in remote workers connecting back to corporate networks for applications and data, the attack surface for cyber threats has expanded beyond the controlled corporate environment. In turn, detecting and responding to cyber threats has become increasingly difficult across the global business community. Organizations are experiencing an increase in both threat volumes and complexity, leaving corporate security teams with the ongoing challenge of balancing workloads across a broader attack surface. Many organizations are burdened with manual processes, disparate or disconnected security tools and a lack of trained IT security staff. In addition, IT and security leaders are being tasked with implementing security programs that reduce risk and show value, but often lack the technology and resources to do so. Prioritizing security objectives and improving threat detection and response capabilities to reduce risk is imperative. These trends have driven Secureworks to create cloud-native security software and technology integrations informed by our 20+ years of hands-on security operations and research experience. Security Challenges Limited visibility and protection against threats beyond the perimeter Lack of trusted Threat Intelligence and inability to monitor beyond basic IOCs Security team is drowning in noise and struggles to identify actionable alerts Security teams pivoting across too many consoles to find emerging threats SOLUTION BRIEF Secureworks ® Taegis Delivers Security Analytics with Zscaler

Secureworks Taegis Delivers Security Analytics with Zscaler

  • Upload
    others

  • View
    6

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Secureworks Taegis Delivers Security Analytics with Zscaler

Availability varies by region. ©2021 SecureWorks, Inc. All rights reserved.

Secureworks integration with Zscaler helps you outpace and outmaneuver adversaries with precision, so you can adapt and respond to market forces and meet real-world business needs. Providing a unique combination of AI-powered insights and unrivaled Threat Intelligence with advanced correlation and analytics, you can experience better security, improved visibility, and rapid remediation, so you can get back to business.

The ChallengesWith the sharp increase in remote workers connecting back to corporate networks for applications and data, the attack surface for cyber threats has expanded beyond the controlled corporate environment. In turn, detecting and responding to cyber threats has become increasingly difficult across the global business community.

Organizations are experiencing an increase in both threat volumes and complexity, leaving corporate security teams with the ongoing challenge of balancing workloads across a broader attack surface. Many organizations are burdened with manual processes, disparate or disconnected security tools and a lack of trained IT security staff. In addition, IT and security leaders are being tasked with implementing security programs that reduce risk and show value, but often lack the technology and resources to do so. Prioritizing security objectives and improving threat detection and response capabilities to reduce risk is imperative.

These trends have driven Secureworks to create cloud-native security software and technology integrations informed by our 20+ years of hands-on security operations and research experience.

Security Challenges• Limited visibility and

protection against threats beyond the perimeter

• Lack of trusted Threat Intelligence and inability to monitor beyond basic IOCs

• Security team is drowning in noise and struggles to identify actionable alerts

• Security teams pivoting across too many consoles to find emerging threats

S O L U T I O N B R I E F

Secureworks® Taegis™ Delivers

Security Analytics with Zscaler ™

Page 2: Secureworks Taegis Delivers Security Analytics with Zscaler

S O L U T I O N B R I E F

Availability varies by region. ©2021 SecureWorks, Inc. All rights reserved.

ZscalerData

XDRAlerts

XDR Console

Secureworks Taegis XDRAdvanced Analytics/Detectors

ZscalerZero Trust Exchange

TacticGraphsTM

DomainGenerations

Algorithm (DGA)

StolenCredentials

Rare Programto IP

SuspiciousDNS Activity

Punycode Command& Control

Login Failure

LoginAnomaly

Pass TheTicket

IntelligenceWatchlists

DDoS SourceIP Count

Sydney New York London

Internet

Block Bad / Protect Good

Branch HQ Road Warrior

Your Workforce

Zscaler Internet Access1

Better Together Secureworks and Zscaler Zscaler Zero Trust Exchange protects users, applications and devices with a complete security stack delivered as a service, from the cloud. Together, Secureworks and Zscaler improve threat detection and response across endpoint, network, and cloud, to drive more efficient security operations and better security outcomes. With Zscaler, we collect, correlate, and analyze multiple types of security and operational data from your environment. XDR continuously combines and analyzes this data across your security tools to alert you to suspicious activity that needs attention. This reduces false positives, improves time-to-detect and respond, and provides your security analyst with the relevant user and asset context they need to protect your business.

XDR includes continuously updated Detectors, which identify and prioritize security alerts to help you find known and unknown threats. These detection use cases are built into XDR and leverage threat intelligence and advanced analytics, so your investigations are better informed. Cloud-native XDR allows Secureworks to continuously update Detectors as adversary tactics change. XDR provides prioritized alerts with the context to drive investigations that allow you to respond to threats quickly and with confidence. Our “Ask an Expert” chat feature provides real-time collaboration with an experienced Secureworks analyst, to help with an investigation or to recommend a response.

Zscaler Internet Access1 (ZIA) provides critical telemetry components of user, IP, domain, and indicators of compromise. This, combined with a robust set of XDR data models and Detectors, provide high fidelity threat alerts and automation that makes your SOC more efficient and effective. XDR Detectors use Zscaler data to deliver enhanced detection of Punycode, Domain Generation Algorithm (DGA), and other domain-based attacks. This

1 Taegis XDR integration currently includes the Zscaler Cloud Firewall and Zscaler Secure Web Gateway components of ZIA.

Secureworks Differentiators

20+Years of attack & threat data

1,400IR engagements performed in the last year

300+Expert security analysts, researchers & responders

52,000Database of 52k unique threat indicators managed & updated daily

1 Taegis XDR integration currently includes the Zscaler Cloud Firewall and Zscaler Secure Web Gateway components of ZIA.

Page 3: Secureworks Taegis Delivers Security Analytics with Zscaler

About SecureworksSecureworks® (NASDAQ: SCWX) is a global cybersecurity leader that protects customer progress with Secureworks® Taegis™, a cloud-native security analytics platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.

About ZscalerZscaler (NASDAQ: ZS) accelerates digital transformation so that customers can be more agile, efficient, resilient, and secure. The Zscaler Zero Trust Exchange protects thousands of customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location. Learn more at zscaler.com or follow us on Twitter @zscaler.

For more information, visit secureworks.com

Availability varies by region. ©2021 SecureWorks, Inc. All rights reserved.

S O L U T I O N B R I E F

powerful combination also allows us to identify attack sequences not previously seen. By correlating against the MITRE ATT&CK framework we provide the information necessary for an analyst investigation to quickly move from exploitation to root cause identification.

At-A-GlanceSecureworks XDR and Zscaler deliver informed security for better business outcomes:

1. Advanced Analytics: Powered by machine learning, deep learning, and statistical analysis, we unify detection and response across the entire ecosystem so you can reduce risk and mitigate advanced threats.

2. Accelerated Investigation & Response: The Zscaler Zero Trust Exchange plus Secureworks XDR Detectors, and “Ask An Expert” chat simplify security operations so you can detect suspicious activity that often evades legacy security tools.

3. Threat Intelligence: Secureworks Community-Applied Intelligence, Incident Response findings, Threat Intelligence from the Secureworks CTU ™ and, third-party intelligence are combined to keep your SOC informed.

4. Zero Trust Exchange: Zscaler cloud-native foundation for secure digital transformation, delivering the agility, security, and experience you need to move your organization ahead.

Together, Secureworks and Zscaler strive to provide improved security, visibility, and time to remediation so you can reduce risk and more confidently run your business. For organizations without a SOC or enough skilled analysts, Secureworks can manage the solution for you with Secureworks Taegis ManagedXDR.

https://www.zscaler.com/
https://twitter.com/zscaler
http://secureworks.com

Dell SecureWorks Sale Meeting Presentation

Dell SecureWorks Sale Meeting Presentation

Documents
TECHNOLOGY BRIEF SKYBOX SECURITY AND ZSCALER...Security has integrated with the Zscaler Cloud Security Platform. The integration gives customers with Zscaler Cloud Firewall a way to

TECHNOLOGY BRIEF SKYBOX SECURITY AND ZSCALER...Security has integrated with the Zscaler Cloud Security Platform. The integration gives customers with Zscaler Cloud Firewall a way to

Documents
Zscaler and SD-WAN · 2019-02-15 · ZSCALER SD-WAN SOLUTION BRIEF 21 Zscaler, Inc. All rits reserved. ZSCALER AND SD-WAN Reduce cost and complexity Zscaler and SD-WAN enable the

Zscaler and SD-WAN · 2019-02-15 · ZSCALER SD-WAN SOLUTION BRIEF 21 Zscaler, Inc. All rits reserved. ZSCALER AND SD-WAN Reduce cost and complexity Zscaler and SD-WAN enable the

Documents
Zscaler Web Security Services

Zscaler Web Security Services

Documents
Securing your Cloud Transformation - Zscaler

Securing your Cloud Transformation - Zscaler

Documents
The Information Security Experts Copyright © 2008 SecureWorks, Inc. All rights reserved. SecureWorks Scanning Module

The Information Security Experts Copyright © 2008 SecureWorks, Inc. All rights reserved. SecureWorks Scanning Module

Documents
Zscaler and Gigamon ThreatINSIGHT · JOINT SOLUTION BRIEF ZSCALER AND GIGAMON THREATINSIGHT Zscaler and Gigamon ThreatINSIGHT Enabling Cloud-based Network Detection and Response for

Zscaler and Gigamon ThreatINSIGHT · JOINT SOLUTION BRIEF ZSCALER AND GIGAMON THREATINSIGHT Zscaler and Gigamon ThreatINSIGHT Enabling Cloud-based Network Detection and Response for

Documents
BT Managed Cloud Security (Zscaler) · 2020-06-30 · BT Managed Cloud Security (Zscaler) Schedule BTL_BTGS_MngdCldScrty(Zscaler)Sch_published28June2019.docx Page 3 of 18 3 Service

BT Managed Cloud Security (Zscaler) · 2020-06-30 · BT Managed Cloud Security (Zscaler) Schedule BTL_BTGS_MngdCldScrty(Zscaler)Sch_published28June2019.docx Page 3 of 18 3 Service

Documents
The Total Economic Impact of Secureworks Taegis ManagedXDR

The Total Economic Impact of Secureworks Taegis ManagedXDR

Documents
Zscaler Internet AccessTM€¦ · Zscaler Internet AccessTM Deliver fast, secure access to the internet and SaaS apps with a complete security stack as a service. Zscaler Internet

Zscaler Internet AccessTM€¦ · Zscaler Internet AccessTM Deliver fast, secure access to the internet and SaaS apps with a complete security stack as a service. Zscaler Internet

Documents
IntSights for Zscaler Integration Benefitswow.intsights.com/rs/071-ZWD-900/images/IntSights for Zscaler.pdfAbout Zscaler Zscaler is revolutionizing internet security with the industry’s

IntSights for Zscaler Integration Benefitswow.intsights.com/rs/071-ZWD-900/images/IntSights for Zscaler.pdfAbout Zscaler Zscaler is revolutionizing internet security with the industry’s

Documents
About the Summit - IBAT · About the Summit yber threats, ... SecureWorks rad Giddens Kevin Jordan SecureWorks alTech ... Dell Deluxe Financial Services

About the Summit - IBAT · About the Summit yber threats, ... SecureWorks rad Giddens Kevin Jordan SecureWorks alTech ... Dell Deluxe Financial Services

Documents
SteelHead Path Selection to Zscaler with RiOS 9 Path Selection to Zscaler...The SteelHead Path Selection to Zscaler with RiOS 9.0: ... The SteelHead is able to GRE encapsulate and

SteelHead Path Selection to Zscaler with RiOS 9 Path Selection to Zscaler...The SteelHead Path Selection to Zscaler with RiOS 9.0: ... The SteelHead is able to GRE encapsulate and

Documents
Investor Relations Day - Secureworks Corporation

Investor Relations Day - Secureworks Corporation

Documents
Zscaler Cloud DLP · Zscaler Cloud DLP enables you to protect sensitive data with advanced controls and granular policy, which can easily be deployed as part of the Zscaler security

Zscaler Cloud DLP · Zscaler Cloud DLP enables you to protect sensitive data with advanced controls and granular policy, which can easily be deployed as part of the Zscaler security

Documents
Zscaler and Cradlepoint SD-WAN Deployment Guide€¦ · Cradlepoint NetCloud and Zscaler Internet Access (ZIA) Zscaler Internet Access (ZIA) is a cloud-based solution providing a

Zscaler and Cradlepoint SD-WAN Deployment Guide€¦ · Cradlepoint NetCloud and Zscaler Internet Access (ZIA) Zscaler Internet Access (ZIA) is a cloud-based solution providing a

Documents
Zscaler Analyst Day 2021

Zscaler Analyst Day 2021

Documents
Zscaler and Splunk SIEM | Deployment Guide · 4 Configuring Splunk for NSS/Zscaler Following steps assume that you have Admin access to a working instance of Splunk 4.1 Getting Zscaler

Zscaler and Splunk SIEM | Deployment Guide · 4 Configuring Splunk for NSS/Zscaler Following steps assume that you have Admin access to a working instance of Splunk 4.1 Getting Zscaler

Documents
ZIA — Transform how you deliver Internet and Web Security · ZIA — Transform how you deliver Internet and Web Security Subject: Zscaler Internet Access delivers the complete security

ZIA — Transform how you deliver Internet and Web Security · ZIA — Transform how you deliver Internet and Web Security Subject: Zscaler Internet Access delivers the complete security

Documents
Zscaler Web Security · SLTI BRIE Zscaler ™ Web Security Zscaler Web Security, part of the Zscaler Cloud Security Platform, delivers the complete security stack as a cloud service,

Zscaler Web Security · SLTI BRIE Zscaler ™ Web Security Zscaler Web Security, part of the Zscaler Cloud Security Platform, delivers the complete security stack as a cloud service,

Documents
Dell SecureWorks Social Screen Shots

Dell SecureWorks Social Screen Shots

Documents
IntegrationGuide Zscaler SAM

IntegrationGuide Zscaler SAM

Documents
SecureWorks Threat Intelligence Executive Report

SecureWorks Threat Intelligence Executive Report

Documents
Dell SecureWorks - Managed Security Services

Dell SecureWorks - Managed Security Services

Documents
Zscaler Cloud Firewall · DATA SEET Zscaler Cloud Firewall benefits With Zscaler Cloud Firewall, you get security and access controls without the cost, complexity, and performance

Zscaler Cloud Firewall · DATA SEET Zscaler Cloud Firewall benefits With Zscaler Cloud Firewall, you get security and access controls without the cost, complexity, and performance

Documents
Zscaler and VeloCloud by VMware SD-WAN …...Step 1: Configure VPN credentials and site location (Zscaler Admin) Step 2: Create and Configure a Cloud Security Service – Zscaler (VeloCloud

Zscaler and VeloCloud by VMware SD-WAN …...Step 1: Configure VPN credentials and site location (Zscaler Admin) Step 2: Create and Configure a Cloud Security Service – Zscaler (VeloCloud

Documents
CloudGenix and Zscaler | Deployment Guide

CloudGenix and Zscaler | Deployment Guide

Documents
Zscaler Workload Posture

Zscaler Workload Posture

Documents
Surviving the Ever Changing Threat Landscape the Ever – Changing Threat Landscape Kevin Jordan Cyber Security Specialist Dell SecureWorks • Classification: //Dell SecureWorks/Confidential

Surviving the Ever Changing Threat Landscape the Ever – Changing Threat Landscape Kevin Jordan Cyber Security Specialist Dell SecureWorks • Classification: //Dell SecureWorks/Confidential

Documents
Zscaler-Silver Peak Deployment Guide...Title Zscaler-Silver Peak Deployment Guide Author Silver Peak Systems, Inc. Subject BEST PRACTICES FOR DEPLOYING ZSCALER SERVICE CHAINING WITH

Zscaler-Silver Peak Deployment Guide...Title Zscaler-Silver Peak Deployment Guide Author Silver Peak Systems, Inc. Subject BEST PRACTICES FOR DEPLOYING ZSCALER SERVICE CHAINING WITH

Documents