Overview
ClearSkies™ TDIR – Optimized for Faster Detection and Response
The latest release of ClearSkies™ Threat Detection, Investigation, and Response (TDIR) is designed to help organizations and MSSPs drastically reduce Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR) — two critical factors in minimizing the impact of modern cyber threats. By automating detection and response workflows, enriching alerts with real-time intelligence, and providing clear investigative guidance, ClearSkies™ TDIR empowers your SecOps team to contain threats faster, limit damage, and maintain operational continuity.
What’s New in v6.8.1
Amazon S3 Log Integration
Fetch logs from S3 buckets to integrate ClearSkies with your AWS deployed resources. Thus, give a broader insight into what is happening in your cloud infrastructure.
Azure Log Analytics Integrations
This integration gives the ability to the iCollector to query all tables from an Azure Log Analytics Workspace and then ingest them for further correlation between your on-prem and cloud deployed services offering a more comprehensive view and adding context to what is happening on both your on-prem and cloud deployed resources.
Alibaba Cloud Vulnerability Integration
Enable the collection of vulnerability data from Alibaba Cloud for your cloud deployed machines. Then these vulnerabilities are parsed and taken into consideration during correlation, alert generation and alert triage, giving more context to the analysts.
WatchGuard SOAR Integration
Enhanced the SOAR functionality of the ClearSkies TDIR platform by integrating with Watchguard Firewalls. The integration makes use of Watchguard Threatsync APIs for seamless integration with your Watchguard appliances regardless of the deployment environment.