Enhanced Threat Protection (ETP)
The Enhanced Threat Protection (ETP) service promotes active mitigation of advanced threats through intelligence-driven detection. The managed service examines DNS and email traffic against real-time threat feeds to automate threat protection and neutralize advanced threats.
ETP detects threats by comparing email and network traffic against “best in class” threat feeds. Suspicious emails are automatically quarantined and malware is blocked for real-time protection. Throughout the process, intelligence on the adversaries’ tactics, techniques and procedures is collected to inform a strong cyber defense.
- Detect and quarantine emails with suspicious content
- Detect and block malware Command and Control
- Report metrics on emails processed and quarantined, domain names processed and blocked
ETP is a service that proactively stops malicious email delivery and malware Command and Control at key stages of the Cyber Kill Chain®.
ETP automates threat blocking based on:
- historical intelligence
- gathered intelligence
- acquired intelligence