McAfee Launches ESM Cloud, Delivering Rapid Time to Value With Incident Investigations

McAfee, the device-to-cloud cybersecurity company, today announced McAfee Enterprise Security Manager (ESM) Cloud, a new cloud-based security and information event management (SIEM) offering that supports the detection, incident response and threat hunting activities of a security operations team. As a cloud-based solution, McAfee ESM Cloud extends the value of a traditional SIEM by providing faster onboarding of security telemetry, automatic updates and continuous system health monitoring.

"Today's SecOps teams face a multitude of issues, including the need to take on new efforts such as digital transformation, the convergence of internet technology and operation technology, and the sudden shift to remote working," said Anand Ramanathan, vice president of enterprise products, McAfee. "ESM Cloud helps customers tackle these challenges, allowing them to maintain and improve upon their security posture as they progress through their journey of transitioning to the cloud."

McAfee ESM Cloud leverages the power of cloud computing to accelerate time to value for security operations centers through:

• Advanced Analytics: real-time and historical analysis powered by rich contextual data to detect and prioritize threats, uncover anomalous user behavior and respond to attacker tactics, techniques and procedures (TTPs)
• Time to Value: use case focused security content packs that deliver immediate value through pre-built threat detection rules and fully operational dashboards, reports, watchlists and alarms
• Unmatched Data Source Coverage: out-of-the-box coverage of 100's of data sources across the endpoint, network and cloud-based services and applications
• Open Integration Fabric: open interface facilitates integration with McAfee and third-party solutions for immediate response to threats
• Simplicity and Operational Efficiency: auto-provisioning allows event ingestion from day one and improves efficacy by minimizing engineering efforts required to deploy and maintain infrastructure
• Continuous Improvement: new capabilities and enhancements delivered automatically, freeing customers from the burden of software updates and upgrades
• Scalability and Elasticity: cloud-based service supports dynamically changing customer requirements, automatically increasing scale and capacity to process vast amounts of data

Today's announcement also builds upon McAfee's customer recognition within SecOps and SIEM. On July 3, McAfee was named a 2020 Gartner Peer Insights Customers' Choice for SIEM, a distinction that is verified by end-user professionals, taking into account both the number of reviews and the overall user ratings.

Additional Resources:

• ESM Cloud Landing Page
• Gartner Peer Insights ?Voice of the Customer': Security Information and Event Management, July 3, 2020

Gartner Peer Insights Customers' Choice constitute the subjective opinions of individual end-user reviews, ratings, and data applied against a documented methodology; they neither represent the views of, nor constitute an endorsement by, Gartner or its affiliates.

About McAfee

McAfee is the device-to-cloud cybersecurity company. Inspired by the power of working together, McAfee creates business and consumer solutions that make our world a safer place. www.mcafee.com

McAfee technologies' features and benefits depend on system configuration and may require enabled hardware, software, or service activation. No computer system can be absolutely secure. McAfee® and the McAfee logo are trademarks of McAfee, LLC or its subsidiaries in the United States and other countries. Other marks and brands may be claimed as the property of others.