FINAL WORD
The newly released McAfee® ATD
v4.0 software introduces an innovative
deep learning technique to enhance
detection and expands advanced
analysis capabilities within email
attachments, resulting in more
comprehensive protection across the
network as new threat intelligence
and reputation updates are shared
throughout the ecosystem.
New capabilities include:
• Enhanced Machine Learning Detection:
Machine learning now bolsters McAfee
ATD detection capabilities, resulting
in an expanded ability to identify
malicious markers that may be hidden,
or not fully executed.
• Expanded, Closed-Loop Detection-
to-Protection for Email: McAfee
ATD Email Connector now enables
email security gateways to forward
suspicious attachments to McAfee
ATD for analysis, preventing
malware from spreading on internal
networks. New enhancements for
McAfee Enterprise Security Manager
(ESM) include integrated, patented
countermeasure-aware risk analysis
to help security operations teams
identify threats and assess the impact
of new vulnerabilities, as well as new
support for critical SOC use cases.
• Accurate Insight into Exposure and
Risk: McAfee® ESM now improves
risk assessment by factoring in
active, relevant countermeasures
and priority guidance from McAfee
GTI, providing a more accurate
understanding of exposure and
potential impact. The new Asset
Threat Risk Content Pack 2.0 feature
delivers security configuration,
compliance posture and patch
assessment in a single view
• Rapid Use Case Deployment: The
new McAfee Connect content portal
simplifies access to freely available,
simple to deploy use cases and
solution integrations. Through
the portal, McAfee customers can
find tools to activate monitoring,
detection and incident management
tasks, including user behaviour
analysis and detection of malware
exploits and reconnaissance
• Effortlessly Monitor and Analyse
Cloud Activity: Easy incorporation
of Microsoft Office 365 actions and
www.intelligentcio.com
events enables monitoring and analysis
of user activity within cloud services
Fully Unified Data Loss Prevention
McAfee Data Loss Prevention (DLP)
Endpoint, DLP Prevent, DLP Discover and
DLP Monitor are now fully unified.
New capabilities include:
• Improved Business Efficiency:
Unified policy management across
network and endpoint DLP built upon
a common classification engine,
dictionaries, regular expression
engine and syntax
• Faster Investigation and Remediation:
Simplified incident and case
management speeds investigation
and remediation of risk or suspicious
user behaviour by line-of-business
data stewards, and information
security professionals alike
• Consistent Event Analysis: Common
file, email, web traffic and database
analysis across endpoint and network
DLP ensure consistent enforcement
of corporate data usage policies
Dynamic Endpoint Protection
McAfee’s dynamic endpoint protection
collaborates across products, allowing
new technology to easily integrate
without a complete architecture rebuild,
and leverages machine learning to
improve detection capabilities.
New capability includes:
• Integrated Cloud Threat Detection:
New integration between McAfee
Cloud Threat Detection (CTD) and
McAfee Threat Intelligence Exchange
(TIE) enables McAfee Endpoint
Security (ENS) to forward suspicious
samples to a cloud sandbox for in-
depth analysis.
Continued Commitment to Open
Source and Industry Collaboration
McAfee believes that no one person,
product or organisation can fight
cybercrime alone, which is why McAfee
announced the OpenDXL initiative
in 2016, launching an open industry
standard for all developers to increase
integration flexibility, simplicity and
opportunity. McAfee has now expanded
its commitment to open source through
support of a new, independent open
source community, OpenDXL.com. This
vibrant, collaborative portal includes:
• Community Innovation Forum: A
place for participants to connect, get
ideas, exchange questions and solve
new problems
• Freely Available App Marketplace:
Created for sharing, the app
marketplace features new, creative
use cases for OpenDXL, packaged
and ready for implementation
• ‘Bootstrapper’ to Simplify
Integration: Makes it easier to
create OpenDXL integrations with a
‘bootstrapper’ toolkit, which helps
developers and integrators create API
service wrappers in a few easy steps
The McAfee Security Innovation Alliance,
the company’s technology partner
programme, welcomes 12 new members:
•
•
•
•
•
•
•
•
•
•
•
•
AGAT Software
Cisco Systems
Extreme Networks
Gigamon
HPE
Identiv
Kemp Technologies
Lumeta
Resolve Systems
Siemplify
SkyFormation
Swimlane
“TODAY’S
SECURITY
TEAMS ARE
FACING 244
NEW CYBER
THREATS
EVERY
MINUTE, AMID
A SERIOUS
TALENT
SHORTAGE.”
INTELLIGENTCIO
91