How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
IBM X-Force is a SaaS version. X-Force is integrated with a Security Intelligence Platform, but it's a SaaS version. In short, we use a platform called the a Security Intelligence Platform based on IBM Qradar SIEM, which is what we enrich from the X-Force engine so that we actually get threat intel from IBM X-Force. We also different leverage on content packs that we download from X-Force. We have thousands of rules that come out of the box with QRadar, which is the SIEM platform. But we need to leverage X-Force to get real time threats feeds and have an understanding of what will be happening, and get advisory on issues such as vulnerability numbers, malware names, MD5 hashes, IP addresses, and other characteristics to see if we have been compromised. We can check for * CVE or breach or malware threat to obtain more details regarding that coverage.
What do you like most about IBM X-Force?
Thanks for sharing your thoughts with the community!
I'm looking for a threat intelligence tool that can aggregate multiple threat intelligence sources. Is this type of tool available? If so, how much do these services cost?