Product Id: 32000410
Description: FireEye Threat Analytics Platform Advanced JumpStart - License
Mfr Part #: CS-FE-JSADV
FireEye Threat Analytics platform (TAP) deployment provides essential expertise to help security teams maximize their investment in the FireEye TAP product. These services combine TAP deployment and knowledge transfer services with threat intelligence and security consulting to enable faster detection and response to cyber incidents across organizations of any size.
The Advanced JumpStart service is designed for customers with larger or more complex networks that need to implement and integrate the Threat Analytics Platform typically consisting of a larger set of data sources and deeper requirements for analysis.
- Efficient deployment
- Maximize tap value
- Increase enterprise visibility
- Efficient analysis
- Periodic checkups
- Gain visibility into your most remote locations
Your attackers can enter anywhere. You need visibility everywhere. TAP uses highly scalable, thin network sensors to provide real-time visibility across the enterprise, including your most remote locations. Deployed as either hardware or software, the TAP collectors passively watch network traffic and construct events to describe the activity it sees. Event data is compressed, encrypted and sent to the cloud for centralized log retention, real-time threat analysis and incident investigation - ensuring your team remains vigilant - enterprise wide. And because the network sensors are centrally managed from the cloud, there's no need for additional management consoles.
- Evolve detection as rapidly as your attackers
Your adversaries are constantly changing. Your detection and investigation capabilities must evolve just as quickly. Every day, FireEye responds to critical security breaches. TAP's dedicated team of data scientists and security researchers leverage this front-line experience to create comprehensive detection rules, behavioral analytics and guided investigations to ensure you can detect the latest threats.
- Accelerate threat investigations
TAP expedites investigation by enriching alerts with supporting data. Threat intelligence, point-in-time context regarding users impacted, actions taken and hosts involved help you validate and scope the incident. TAP guided investigation capability guides you through investigative strategies by providing pre-populated queries based on different attack scenarios. Upon receiving an alert, TAP selects and presents the relevant queries, providing a good practice workflow to guide and inform your threat investigation.