Security Management

SnapAttack, Mandiant Advance Threat Detection Partnership

Credit: Getty Images

SnapAttack and Mandiant have extended a collaboration begun some 18 months ago aimed at advancing threat detection for organizations.

In June 2022, the two companies initially struck a partnership to integrate Mandiant’s adversary intelligence with SnapAttack’s adversary emulation and no-code threat detection capabilities. SnapAttack positions itself as helping organizations answer their “most pressing” question: "Are we protected against the threats that matter to me?"

The new endeavor will bring Mandiant's threat intelligence to customers directly in the SnapAttack threat hunting, detection engineering and threat intelligence platform, ultimately helping customers prioritize, detect, and respond to threats more quickly, easily, and effectively.

Benefits the SnapAttack-Mandiant Partnership

Here are the benefits of the expanded partnership:

  • SnapAttack's newly introduced "Threat Profiles" automatically generate a tailored threat profile for each customer organization by leveraging key information from Mandiant Threat Intelligence.
  • Threat Profiles eliminate the contextualization and actionability challenges that restrict threat intelligence programs, empowering organizations to prioritize the threats that matter most to them.
  • SnapAttack uses machine learning to analyze an organization's ability to detect threats outlined in their custom Threat Profiles.
  • Operationalized threat intelligence is delivered to the customer in the form of pre-curated hunt queries and alerting rules designed to operate in over 30 threat detection platforms, including Google Chronicle.

Commenting on the partnership, Peter Prizio, SnapAttack chief executive said, "This partnership aligns perfectly with our mission of empowering organizations to proactively protect their digital landscapes. Through the creation of custom Threat Profiles powered by Mandiant, SnapAttack enables our customers to focus their threat detection efforts precisely where it matters most, leading to more efficient threat hunts, broader coverage of the MITRE ATT&CK framework, and faster threat detection."

The partners said the deal has wide implications by representing a significant step forward in democratizing and revolutionizing threat detection.

 

D. Howard Kass

D. Howard Kass is a contributing editor to MSSP Alert. He brings a career in journalism and market research to the role. He has served as CRN News Editor, Dataquest Channel Analyst, and West Coast Senior Contributing Editor at Channelnomics. As the CEO of The Viewpoint Group, he led groundbreaking market research.