The QRadar Security Intelligence Platform, designed by Q1 Labs, combines deep analytic capabilities with real-time data feeds from hundreds of different sources.
Many organisations have struggled to create a security defense system after failing to put together technologies that integrate in an intelligent and automated fashion. This patchwork approach has created loopholes that hackers can exploit.
IBM’s system is the first to tackle this problem by serving as the control centre that integrates real-time security threat intelligence data from more than 400 different sources.
“Trying to approach security with a piece-part approach simply doesn’t work. By applying analytics and knowledge of the latest threats and helping integrate key security elements, IBM plans to deliver predictive insight and broader protection,” said Brendan Hannigan, general manager at IBM Security Systems.
“With new integrations to be made available, the analytics platform can quickly identify abnormal activity by combining the contextual awareness of the latest threats and methods being used by hackers with real-time analysis of the traffic on the corporate IT infrastructure. For example, the future integrations can detect when multiple failed logins to a database server are followed by a successful login and access to credit card tables, followed by an upload to a questionable site,” he added.