IBM has released its security analytics platform, IBM Security QRadar, and a security app exchange for the creation and sharing of programs developed on the company’s security infrastructure.
The launch follows the release of its 700 TB database of security threat data earlier in April 2015. The vendor said it forms part of its campaign to advance industry collaboration and innovation to battle organised cybercrime.
IBM said the company and its partners including Bit9 + Carbon Black, BrightPoint Security, Exabeam and Resilient Systems have populated the exchange with apps that extend security analytics in areas like user behavior, endpoint data and incident visualization.
The apps utilise a new open application programming interfaces (APIs) for QRadar, IBM’s security intelligence platform. The platform uses data analytics and threat intelligence to detect security incidents for thousands of security operation centers around the world.
The vendor claimed that through integration with third-party technologies, the apps are designed to provide visibility into more types of data and offer new automated search and reporting functions which help security specialists focus on the most pressing threats.
In conjunction, the vendor has launched its IBM Security QRadar, which analyses data across an organization's IT infrastructure to identify potential security threats.
IBM said QRadar will allow customers to create rules that will automatically take actions once specific threats have been detected. Rules created within the application automatically trigger actions that block IP addresses and control user access based on their risk profile.
IBM said it is also further integrating QRadar with IBM BigFix endpoint security management to help prioritise threats and patches on user devices. QRadar can identify exposed endpoints that do not have BigFix installed, helping clients find rogue or unmanaged assets more quickly.
