Please share with the community what you think needs improvement with IBM X-Force.
What are its weaknesses? What would you like to see changed in a future version?
Focusing on collecting tactical indicators of compromise (IOCs) like ,domains, IP addresses and hashes sin not enough– teams need to map or act . We need More context on phishing , malware , botnets and Additional IOCs. We need highly actionable insights
I would like a lot more AI capabilities in terms of trying to contextualize more information happening in the IT department, then correlate it into this product. This type of information would ensure that we understand attacks before they happen from a release standpoint and have good releases in the future. Right now, we see IBM as an industry leader, and we are happy with that. However, more can be done with Watson and other product capabilities within that group. I would like to see this added into the product in the future to improve mean time to detect and mean time to respond. Therefore, we would like to have more AI capabilities to detect threats and improve its productivity from a cybersecurity standpoint.
What do you like most about IBM X-Force?
Thanks for sharing your thoughts with the community!