Micro Focus ArcSight

SIEM

Accelerate Threat Investigation and Response

The integration of IntSights External Threat Protection (ETP) Suite with Micro Focus ArcSight ESM delivers tailored external threat intelligence into the ArcSight SIEM environment for streamlined review and deeper threat research. This combination of externally sourced Indicators Of Compromise (IOCs) with internally detected events gives SOC teams the information and tools they need to work effectively and efficiently. The IntSights and Micro Focus integration delivers better protection from threats to your business while lowering your security operations costs.

Website: https://www.microfocus.com/en-us

Twitter: @MicroFocus

IntSights for Micro Focus ArcSight

Integration Snapshot

IntSights can be integrated with ArcSight ESM via on-prem and cloud implementations. Simply configure an ArcSight ESM FlexConnector to pull IOC data from IntSights ETP. The integration allows for creating customized rules to correlate, prioritize, and automate responses to events and alerts. For on-prem ArcSight implementations, use an IntSights virtual appliance to deliver IOC data to ArcSight. Cloud-based implementations of ArcSight integrate directly with IntSights cloud.

Integration Benefits

  • Faster Response to Threats
  • Increased Productivity
  • Improved Prioritization
  • Automated Threat Remediation