Palo Alto Networks
Palo Alto Networks, Inc. is a global cybersecurity provider with a vision of a world where each day is safer and more secure than the one before. We empower enterprises, service providers, and government entities to secure all users, applications, data, networks and devices with comprehensive visibility and context continuously across all locations. We deliver cybersecurity products covering a broad range of use cases, enabling our end-customers to secure their networks, remote workforce, access to the service edge, branch locations, public and private clouds, and to advance their Security Operations Centers (“SOC”). We believe our portfolio offers advanced prevention and security, while reducing the total cost of ownership for organizations by improving operational efficiency and eliminating the need for siloed point products.
Challenges Overcome Through Integration
In today’s environment, organizations need security tools that provide great protection against emerging threats, integrate with each other seamlessly, and make security analysts more efficient and capable. With our integrated solutions, clients get
- Real-time threat intelligence from the entire web — open, deep, and dark — enabling customers of Palo Alto Networks to benefit from protection rules and actions that can be taken quickly and confidently.
- Instant context around an IOC with easy-to-read intelligence cards, giving security operations all relevant information in a consolidated view when reviewing new alerts.
- Evidence-based risk scores for indicators, enabling security operations teams to make faster verdicts.
Palo Alto Networks products are enhanced and provide even greater security benefits when powered by Recorded Future Threat Intelligence. Conversely, network and malware signals passing through Palo Alto Networks products can be useful for analysis when conducting threat research. Consequently we have several integration points:
CORTEX XSOAR – Recorded Future Threat Intelligence can be used to enable and enhance practical and powerful playbooks in this industry leading SOAR tool.
Recorded Future Feeds for XSOAR – Utilize Recorded Future risk lists to enhance threat detection and enable IP and domain specific traffic blocking at the perimeter.
CORTEX LOOKUP APP – Find out immediately if the IOCs you are researching in Recorded Future have been observed in your network with this utility that searches your Cortex Datalake directly from a Recorded Future Intelligence Card.
AUTOFOCUS INTELLIGENCE CARD EXTENSION – Tap into Autofocus analysis from with the Recorded Future Portal and see Palo Alto Network’s network, endpoint, cloud intel and researcher-curated threat intelligence side by side with Recorded Future’s vast collection of external sources.