Intel’s New McAfee Security Products: What You Need to Know
Credit: ShutterstockThings are happening at Intel Security. In fact, at the Intel FOCUS 2016 security conference Intel Security announced 10 major enterprise security solution launches, all focused on reducing IT resources workload.
We spoke with Candace Worley, vice president of enterprise solutions marketing about the new products, as well as its OpenDXL initiative. The focus is on four integrated systems: Dynamic Endpoint, Pervasive Data Protection, Data Center and Cloud Defense and Intelligent Security Operations. The new products use integration, automation and orchestration to hopefully reduce strain on overworked IT departments.
Intel bought McAfee in 2011. In September 2016, Intel sold a 51 percent controlling share of its security arm to the private equity firm TPG. TPG plans to build on the McAfee brand to the tune of $1.1 billion in investments. In the meantime, Intel and McAfee are still very much tied together.
Reportedly, Intel Security's new products (still using the McAfee brand) can help corporate security teams keep their networks and data safe, regardless of where threats come from. It hopes to address connected networks as well as internet-of-things (IoT) connections to more fully protect assets.
Worley says the new security solutions are designed to help security teams automate processes to then free up IT resources to manage issues that require human intervention. She calls this hands-off policy enforcement "the automation of the defense lifecycle."
Intel Security knows many IT teams are overtaxed or simply short staffed, so they don't have the resources to manage their security optimally. It claims its new solutions can increase incident response capacity by nearly 30 times and response times from a day to minutes.
Here's what you need to know about the four main components of Intel/McAfee's new options.
The Four Parts of Intel Security's New Product Launches
Dynamic Endpoint: McAfee Endpoint Security 10.5, McAfee Active Response 2.0
This arm of the security solution goes beyond basic malware identification and mitigation, though it has that too. Intel claims it provides dynamic application containment to help protect from emergent threats yet to be identified. In addition, it is the first to offer machine learning based malware classification. This technology analyses pre- and post-execution processes to identify suspicious behavior and mitigates potential zero-day threats. It protects off network interactions with web gateway security technologies. McAfee Active response allows admins to quickly trace processes and correct issues using a single click, then that response can be automated to handle future attacks automatically.
Pervasive Data Protection: McAfee DLP 10.0, McAfee Web Gateway Cloud Service, McAfee Cloud Protection
Understanding that increasingly companies are moving to online services, rather than on-premise software, Intel Security is amplifying its online security. McAfee DLP 10.0 provides data loss prevention features including policy management and incident management. The Gateway Cloud Service protects online activities. The newest version has three times the data centers as before and 99.999 percent uptime, and does not require onsite gateway hardware. The Cloud Data Protection portion is still in beta, but is available to help IT persons monitor risky endpoint and cloud events.
Data Center and Cloud Defense: McAfee Server Security 4.5, McAfee Virtual Network Security Platform (vNSP) 8.3
Most companies rely on cloud services rather than a bay of servers. That is why Intel Security provides protection for physical, virtual and cloud infrastructures. Security is no longer about securing a network perimeter, the perimeter is now the entire Internet. According to Intel, this technology can help protect from targeted attacks that may take place outside of your network.
Intel Security's newest versions strive for integration and simple orchestration. McAfee Management for Optimized Virtual Environments Anti-Virus (MOVE AV), McAfee Virtual Network Security Platform (vNSP), McAfee Advanced Threat Defense and McAfee Threat Intelligence Exchange along with virtualization platforms such as VMWare NSX and OpenStack should work seamlessly together to help relieve IT teams from labor intensive monitoring.
Intelligent Security Operations: McAfee Cloud Threat Detection, McAfee Advanced Threat Defense, McAfee Enterprise Security Manager
Intelligent, in this sense, means that its security can think for itself and learn, according to Intel. McAfee Cloud Threat Detection is a machine learning malware analysis service. This means it can detect zero-day threats and learn from that experience to help it detect future malware attacks. It reports that this security is provided with an 80 percent increase in throughput rate. McAfee Advanced Threat Defense is a virtual appliance that helps improve the user experience and also helps increase throughput rate. The Enterprise Security Manager is HTML5 based, and helps admins speed up incident response times. Consulting and managed services are also available, if needed.
One more thing
Those are the four parts of the new product launch, but there is more; the OpenDXL Initiative. This has been available for some time, but now it is open to everyone, not just partners. Everyone is familiar with data sharing that contributes to the defense data collected by security companies, but this initiative opens up this technology to the entire industry, not just McAfee software users.
The McAfee Data Exchange Layer along with the beta release of new software development kit (SDK) for DXL allow "white hat" organizations to create and share malware mitigations optimized for the quick executions. It will be interesting to see how large organization, universities and even McAfee competitors use this new tech to share security data for the overall benefit of all users.
These new releases will keep evolving as McAfee and Intel Security progresses. It will be interesting to see how the billion dollars in expansion budget is utilized.