ThreatQuotient selected By Comcast to support cybersecurity operations

ThreatQ Platform and ThreatQ Investigations will be used by telecom conglomerate Comcast, parent of NBC Universal and SKY Group, to operationalise security intelligence across cybersecurity use cases.

  • 1 month ago Posted in

Comcast has selected the ThreatQ Platform and ThreatQ Investigations to meet their cybersecurity operations needs. A full customer success story detailing this engagement can be downloaded here.



Following an extensive and competitive selection process, including a four month proof of concept (POC), ThreatQuotient’s technology solutions ultimately proved to solve a key challenge facing Comcast’s Cybersecurity Operations Center (CSOC): the need to make security data actionable across multiple teams and complex use cases, including priority threat actor risk mitigation, threat hunting, threat detection engineering, incident response and forensics, and risk-based vulnerability management.



“ThreatQuotient’s platform has steadily advanced and rapidly brought in new features as requested by their customers. As we came to the decision to reassess our approach to threat intelligence, we included ThreatQuotient in the evaluation process based on their repeated ability to deliver,” said Haris Shawl, Senior Director, Comcast Cybersecurity. “Comcast Cybersecurity selected ThreatQuotient because they have the right technology and skills to support the scale and complexity of cybersecurity operations at Comcast, the largest residential ISP in the U.S.”



As a result of using the ThreatQ Platform with the DataLinq Engine and ThreatQ Investigations, Comcast’s CSOC achieved the following outcomes:



Prioritise and collaborate to drive efficiencies


Comcast’s cybersecurity teams are now sharing data and learnings in a highly efficient, heavily automated manner. Sharing contextualised intelligence is a force multiplier. Teams can focus on relevant, high-priority issues, so they can make better decisions and take the right actions faster.



Capture more value from tools and teams


The ThreatQ Platform’s support for bi-directional integrations with nearly 300 different tools, customised dashboards and integrated views, allows teams to share actionable intelligence within their workflows using tools they are accustomed to. Comcast Cybersecurity gets more value from their existing tools and teams, while strengthening security posture and can add more tools to scale as needed.



Support complex use cases


Comcast teams can address multiple, complex use cases. In addition to sharing actionable intelligence and enabling collaboration, the ThreatQ Platform and ThreatQ Investigations helps automate repetitive, low-risk, time-consuming tasks. This empowers analysts, threat hunters and engineers to take the lead on complex, time-sensitive investigations, hunts, forensic analysis and incident response.



“ThreatQuotient aims to provide our customers with the best service, experience and technology solutions available to solve their unique needs. We are incredibly proud to be selected by Comcast to solve their security operations challenges,” said John Czupak, President and CEO, ThreatQuotient. “To know that Haris Shawl asked his team who they believed would be the best company to work with, and their answer was ‘hands down, ThreatQuotient’ is not something we take lightly. ThreatQuotient is committed to providing that level of certainty and trust for all brands we have the opportunity to work with.”

Arcserve has published the first in a series of findings of its annual independent global research study on current experiences and attitudes of IT decision-makers (ITDMs) around data protection and recovery. Key findings from the research show that ransomware attacks continue to impact organisations worldwide with high costs, but they are still largely unprepared. With 50% of respondents targeted with ransomware attacks, the research indicates the critical need for companies to take a new approach to data resilience that fortifies disaster recovery strategies, backup systems, and immutable storage solutions to prevent the loss of mission-critical data.
A survey of WAN managers has revealed that multi-factor authentication and single sign-on are the top zero trust features implemented.
New research shows Log4Shell detections tripled, PowerShell scripts heavily influenced a surge in endpoint attacks, the Emotet botnet came back in a big way and malicious cryptomining activity increased.
Enterprise security solution underpinned by Versa SASE.
Hibernian FC is delighted to announce an innovative multi-year partnership with Acronis, the global leader in cyber protection, and Dunedin IT, one of Scotland's most trusted and experienced technology and connectivity providers providing end-to-end services.
Latest Prisma Cloud platform updates help organizations continuously monitor and secure web applications with maximum flexibility.
Despite the uptick in conversations about the importance of a secure password, half of the country’s workforce have a memorable word written in a notepad on their desk – with an astonishing 95% storing it on an easily accessible device.
Orange Cyberdefense will work with NightDragon portfolio companies to infuse technology into high-value security services to help customers stay ahead of threats.