Content, Channel partners, Security Program Controls/Technologies, Channel partner programs, SOC, Threat Intelligence

McAfee Investigator: AI, Machine Learning for Security Operations Centers (SOCs)

McAfee CEO Chris Young
McAfee CEO Chris Young

McAfee has launched Investigator, a security operations center (SOC) product that leverages analytics, artificial intelligence (AI) and machine learning to curate and visualize cyber threat data.

Investigator provides security analysts with situational awareness of cyber threats, McAfee CEO Chris Young said in a prepared statement. By doing so, Investigator helps security analysts address cyber threats from the endpoint to the cloud, according to Young.

With Investigator, security analysts can automatically collect and visualize threat data to perform fast, efficient threat data analysis, McAfee said. Investigator continually learns evolving tactics, techniques and procedures, McAfee stated, and coaches security analysts to help them securely share content and increase their day-to-day productivity.

McAfee also has upgraded its endpoint security solutions, which now include deep learning and pre- and post-execution machine learning capabilities, the company noted.

Deep learning ensures McAfee endpoint security solutions use many layers of mathematical neurons to help security analysts evaluate potential threats and make informed cybersecurity decisions, according to the company. Meanwhile, the solutions' pre- and post-execution machine learning enables security analytics to review files both before and after they execute and perform data analysis to provide additional protection against evolving threats, the company indicated.

McAfee Announces Cloud Workload Security Product

In addition to the release of Investigator, McAfee this week launched Cloud Workload Security (CWS), which allows organizations to eliminate blind spots in their hybrid cloud workloads.

CWS leverages the McAfee ePolicy Orchestrator console to simplify hybrid cloud management, McAfee stated. That way, CWS provides organizations with the ability to secure critical hybrid cloud workloads without slowing performance.

McAfee also has announced its Web Gateway is available to run on Amazon Web Services (AWS) and now enables organizations to run its Advanced Threat Defense (ATD) sandboxing technology on Microsoft Azure.

With its commitment to AI, cloud and machine learning technologies, McAfee looks poised to further expand its global reach in the information security market.

The global information security market is projected to be worth $102 billion this year, McAfee pointed out. Furthermore, McAfee indicated that this sector is expected to expand at a compound annual growth rate (CAGR) of 7.6 percent through 2020.

Today, McAfee offers cybersecurity software and products to businesses, consumers and government agencies. The company protects 378 million total endpoints in more than 190 countries.

Dan Kobialka

Dan Kobialka is senior contributing editor, MSSP Alert and ChannelE2E. He covers IT security, IT service provider business strategies and partner programs. Dan holds a M.A. in Print and Multimedia Journalism from Emerson College and a B.A. in English from Bridgewater State University. In his free time, Dan enjoys jogging, traveling, playing sports, touring breweries and watching football.