SecOps Services Summary
Last modified: February 22, 2023
The complete list of services that form SecOps Services is shown below. While Google offers many other services and APIs, only the services below are covered under the agreement pursuant to which Google has agreed to provide SecOps Services (the “Agreement”), service level agreements (if applicable), and support offerings. Offerings identified below as Software or Premium Software are not Services under the Agreement.
Services marked in *asterisks* are not available for resale under the Google Cloud Partner Advantage program, unless specifically authorized in writing by Google.
Chronicle SIEM: Chronicle SIEM, a cloud native security information and event management (SIEM) solution, enables customers to collect and analyze security telemetry from across their enterprise to power detection, investigation, and remediation of threats. As part of the service, Chronicle SIEM normalizes, correlates, and enriches security data to provide analysis and context on suspicious activity.
Chronicle SIEM includes Google Cloud Threat Intelligence, which is an aggregate threat intelligence service for Chronicle SIEM customers that leverages Google threat intelligence to surface threats in their cloud and on-premise environments. It is supported by Google threat analysts who verify malicious indicators in security telemetry and surface contextualized alerts to customers, allowing them to make an informed response.
Chronicle SOAR: Chronicle SOAR, a cloud native security, orchestration, automation and response (SOAR) solution, empowers security teams to respond to cyber threats in minutes. Chronicle SOAR fuses a unique threat-centric approach, powerful yet simple playbook automation, and context-rich investigation to free up valuable time and ensure every security team member is informed, productive and effective, complementing Google’s growing security portfolio.
*Mandiant Solutions: Mandiant software and cloud solutions help security teams evaluate the effectiveness of their security tools and stay ahead of sophisticated threat actors. Mandiant Solutions like Mandiant Security Validation and Mandiant Attack Surface Management allow companies to proactively test the efficacy of their security tools, helping them gain visibility and capture data to identify gaps, misconfigurations, and areas that require immediate attention before a cyber attack occurs. Mandiant Advantage Threat Intelligence gives security professionals critical insights into the latest relevant threats so that they can be better prepared to guard against sophisticated attacks. Mandiant Solutions are in part made available through its Mandiant Advantage Platform, a multi-vendor XDR platform that delivers transformative expertise and frontline intelligence to security teams of all sizes.
*Mandiant Managed Services: Mandiant managed detection and response services act as a seamless extension of customers' security teams, delivering continuous monitoring, event triage and threat hunting that's agnostic to customers' endpoint and network tooling.
*Mandiant Consulting Services: Mandiant Consulting offers proven global expertise in providing comprehensive incident response, strategic readiness and technical assurance to help customers mitigate threats and reduce business risk before, during and after an incident.