Introducing Trellix Wise Generative AI for Trellix EDR
We are greatly improving our ability to solve difficult problems such as alert fatigue, missed detections, and talent gaps with Trellix Wise. Launched today, one of the first applications of Trellix Wise GenAI is with Endpoint Detection and Response (EDR) where it helps analysts quickly triage, scope, and analyze threat alerts accurately. Trellix Wise accelerates SOC analysts’ threat hunting and forensic analysis activities through a single integrated management console.
Endpoint is one of the most relevant telemetry sources with a large attack surface for threat actors. Effective endpoint security requires AI-powered capabilities to help customers level the playing field, improving their speed and accuracy of detection against the modern threat landscape. Enriching our EDR solution with AI delivers on that requirement and equips the SOC analysts to have a differentiated capability to stay ahead of adversaries.
Designed to be a force multiplier for security analysts, Trellix Wise for EDR brings a 5x improvement in analyst efficiency in triaging and investigations, and can reduce MTTR (mean time to response) by 50%, ensuring rapid remediation to a known good state.
The time is now – and it’s not new to us
It’s important to note a few things have come together that have made all this possible. We’d be remiss not to acknowledge the impact GenAI has had in the last 24 months. Another critical element that has made this possible is the advancements that have been made in computing power.
Today we have many petabytes of threat intelligence data leading into exabytes of data and telemetry feeding Trellix Wise to produce the most comprehensive and accurate insights. That said, artificial intelligence and the use of machine learning models is not new to us. Trellix endpoint security platform utilizes a combination of client side and server side ML models to identify threats for near real time protection. Regardless of environment (on prem, hybrid and cloud) they share the same degree of efficacy.
Trellix EDR currently provides AI-guided investigations, augmenting SOC analyst skills by automatically answering questions they might have during the course of an investigation. Generative AI supercharges investigations, increasing the fidelity and confidence summary of findings, allowing junior analysts to respond faster with the reasons for the ratings so they can remediate faster than ever.
It is this combination of computing innovation, knowledge, and our data set that allows us to be exactly where we are today. AI is only as good as the data it can leverage. With Trellix Wise you get the right data to make the right decisions than competing solutions.
Trellix Wise – the analyst’s best friend
The use of Trellix Wise with our EDR solution is geared toward one thing: making it easier for analysts to uncover, investigate, and remediate a threat quickly. The addition of GenAI to Trellix EDR is intended to provide highly reliable assistance with a comprehensive set of investigative tips, such as: why are they getting alerted, what can they do about it, what tactics or techniques were used by the adversary, and how can they remediate quickly.. ! We’ve created a number of features within Trellix EDR that make this a reality, here are just a few:
Read the whole announcement here.
___
If this information is helpful to you read our blog for more interesting and useful content, tips, and guidelines on similar topics. Contact the team of COMPUTER 2000 Bulgaria now if you have a specific question. Our specialists will be assisting you with your query.
Content curated by the team of COMPUTER 2000 on the basis of news in reputable media and marketing materials provided by our partners, companies, and other vendors.
Follow us to learn more
CONTACT US
Let’s walk through the journey of digital transformation together.