Jump to Content
Cloud
Blog
Contact sales Get started for free
Cloud
Blog
Contact sales Get started for free
Security & Identity

Now Available: Mandiant Advantage Threat Intelligence Connector for Microsoft Sentinel

August 30, 2022
Mandiant

Written by: Susan Darley

Protecting and defending networks against increasingly persistent attacks is top of mind for all organizations. Continuing our mission to help security teams stay relentless in the fight against cyber threats, we are releasing the Mandiant Advantage Threat Intelligence Connector for Microsoft Sentinel.

"Threat actors are becoming more sophisticated, and we are seeing a continuous rise in cyber-attacks like never before. To protect themselves, organizations need better visibility across their rapidly growing environment and infrastructure. With the Mandiant and Microsoft Sentinel integration, customers can now easily import high fidelity threat intelligence from Mandiant into Microsoft Sentinel and use it for detecting actionable threats using various out-of-the-box detections provided by Microsoft Sentinel.” - Rijuta Kapoor, Senior Program Manager, Microsoft.

Now generally available, the connector will deliver Mandiant frontline threat intelligence and actionable context on indicators of compromise (IOCs) into Microsoft Sentinel users’ workspaces. As a result, users can gain a threat-informed perspective of the adversary in real time.

https://storage.googleapis.com/gweb-cloudblog-publish/images/advantage-sentinel-fig1_0_rlwd.max-1900x1900.png

Figure 1: Mandiant Advantage Threat Intelligence dashboard

Mandiant and Microsoft are trusted industry leaders with a shared commitment to delivering effective security solutions that keep businesses operating with confidence in an ever-changing threat landscape. By bringing Mandiant frontline intelligence into Microsoft security solutions, customers benefit from the knowledge of who is most likely to attack, how they are going to attack and the tools they will use.

Mandiant Threat Intelligence leverages the insights gathered from over 200,000 hours per year of frontline incident response engagements and over 300 Mandiant security researchers and intel analysts around the world. Relevant and easy to consume threat insights will help Microsoft Sentinel customers to gain a better understanding of their unique threat landscape while maximizing the effectiveness of their Microsoft security technology investments.

https://storage.googleapis.com/gweb-cloudblog-publish/images/advantage-sentinel-fig2_0_ckil.max-2000x2000.png

Figure 2: Mandiant Advantage Threat Intelligence mapped to the MITRE ATT&CK Framework dashboard

Contact us today at IntelConnector@Mandiant.com to request more information about how the Mandiant Advantage Threat Intelligence Connector for Microsoft Sentinel can help to increase confidence and accelerate your security risk management and resilience.

Posted in
Related articles
https://storage.googleapis.com/gweb-cloudblog-publish/images/33_-_Storage__Data_Transfer_QsgjqZW.max-700x700.jpg
Storage & Data Transfer

Enhancing backup vaults with support for Persistent Disk, Hyperdisk, and multi-regions

By Jaswant Chajed • 6-minute read

https://storage.googleapis.com/gweb-cloudblog-publish/images/17_-_Security__Identity_NrORvDT.max-700x700.jpg
Security & Identity

How Google Cloud is securing open-source credentials at scale

By Eve Martin-Jones • 5-minute read

https://storage.googleapis.com/gweb-cloudblog-publish/images/Cloud_CISO_Perspectives_header_4_Blue.max-700x700.png
Security & Identity

Cloud CISO Perspectives: How Google secures AI Agents

By Anton Chuvakin • 7-minute read

https://storage.googleapis.com/gweb-cloudblog-publish/images/enhancing_protection.max-700x700.png
Security & Identity

Enhancing Google Cloud protection: 4 new capabilities in Security Command Center

By Tim Knudsen • 5-minute read