We bring you exciting news!! 

Threat Intelligence Security Center (TISC), the new Threat Intelligence Platform from ServiceNow, was successfully released in cGTM (Controlled Go-To-Market) mode on February 1st, 2024. This represents a significant step forward for SOC teams in effectively tackling threats.

Read on to learn more about the background and the product.

Problem Space

• Data Overload and Noise: The sheer volume of threat data from various sources can be overwhelming. Sorting through millions of indicators daily to find relevant threats is time-consuming and error-prone. A 2023 Cyber Threat Intelligence Survey found that 45% of users struggle to identify relevant intelligence due to vast data amounts.
• Integration and Interoperability Issues: Many TIPs struggle to integrate seamlessly with existing security tools and infrastructure, creating data silos and hindering holistic threat analysis. A 2023 MSSP Alert survey found that 19% of participants cite tool and integration challenges as a top concern in threat intelligence use.
• Actionable Insights and Prioritization: Extracting actionable insights from raw threat data and prioritizing threats effectively can be difficult. Security teams may be unsure which threats pose the most significant risk. A 2023 Picus Security report revealed that 33% of organizations struggle to prioritize and act on relevant threat indicators due to skills gaps.
• Lack of Context: Another significant issue is the lack of contextual information associated with threat data. Many TIPs provide raw indicators of compromise (IOCs) without context, making it challenging for analysts to understand the significance of a threat or its potential impact on their organization's security posture.
• High False Positive Rates: TIPs frequently suffer from high false positive rates, where benign activities are incorrectly flagged as malicious. This issue not only wastes valuable analyst time but also erodes trust in the platform's efficacy. A study by McAfee found that the average enterprise deals with over 200,000 security events per day, 99% of which are false positives.

Our Solution

Threat Intelligence driven SecOps from ServiceNow

Threat Intelligence Security Center not only addresses the requirements of Threat Intelligence (CTI) teams but also shares valuable insights with other teams, including Incident Response (IR), Vulnerability Response Management(VRM), and Cyber Fusion Centers (Fraud, Insider Threat, etc.).

Key Differentiators

The key differentiators in TISC redefine the landscape of threat intelligence while providing the standard capabilities expected of a Threat Intelligence Platform. 

• Fusion of Internal & External Intelligence: TISC seamlessly integrates external threat data with your internal information, offering a holistic view of the threat landscape. This fusion empowers your SOC with comprehensive insights to proactively mitigate threats.

• Inbound Filtering Rules: TISC's Inbound Filtering Rules enable precise data curation, reducing noise and allowing your analysts to focus on actionable intelligence. This feature alleviates common pain points encountered with other solutions, enhancing operational efficiency.

• Customizable Threat Score Calculator: Unlike traditional TIPs, TISC's Threat Score Calculator offers customizable weighted calculations tailored to your organization's unique risk profile. This flexibility ensures accurate threat assessments and enhances your SOC's adaptability.

• Empowering Case Management Features: TISC's robust case management capabilities facilitate seamless collaboration across SOC teams, fostering efficient threat investigations and resolution. This feature promotes teamwork and ensures thorough threat analysis.

TISC marks a significant milestone in our journey towards streamlining and consolidating security products, moving away from traditional point solutions and embracing comprehensive platform solutions.

Our integrated solution, which combines SOAR (Security Orchestration, Automation, and Response), TIP (Threat Intelligence Platform), Case Management, and Crisis Response, represents a game-changer in the industry. With these capabilities 'in a box,' we are delivering unparalleled value to our users, providing a comprehensive, all-in-one solution that not only simplifies security operations but also sets a new industry standard for efficiency and effectiveness.

Early Adopters

We are looking for early adopter customers who are willing to test this solution in their sub-prod environments and provide feedback to shape the product’s roadmap.

Important Links:

• Link to the app on store Threat Intelligence Security Center 
• Demo Video on YouTube: Threat Intelligence Security Center Walkthrough Video (Controlled Release)

Want to know more about the product?

If you are interested in having a 1:1 conversation and would like to see a demo of this product, you can reach out to your ServiceNow Account Executive or Sales Representative, or simply comment on this post.