DTCC and FS-ISAC tackle cyber threats 24 September 2014London Reporter: Catherine Van de Stouwe
Image: Shutterstock
A joint venture has been created between the Financial Services Information Sharing and Analysis Centre (FS-ISAC) and the Depository Trust & Clearing Corporation (DTCC), to develop and market automation solutions that advance cyber security capabilities and the resilience of critical infrastructure organisations.
The Soltra Edge solution delivers software automation and services that collect, distil and speed the transfer of threat intelligence from a myriad of sources to help safeguard against cyber attacks.
Over 125 FS-ISAC members and representatives from other sectors, government entities and the private sector contributed to the requirements, architecture and design of the automation software.
Soltra Edge leverages open standards including Structured Threat Information eXpression (STIX™) and Trusted Automated eXchange of Indicator Information (TAXII™) and will include the platform, infrastructure and ecosystem to help individual organisations of all sizes, industry bodies and private sector vendors to come together to streamline threat information sharing using STIX and TAXII.
Mark Clancy, CE0 of Soltra and chief information security officer for DTCC, said: “Today, most cyber threat information is provided manually to users from various, unconnected industry sources. Because of this, on average, it can take firms seven hours to evaluate each threat.”
“With Soltra Edge, one organisation’s incident becomes everyone’s defence. The solution will enable clients to send, receive and store cyber security threat intelligence in a streamlined and automated format, enabling these firms to deploy safeguards against a potential attack.”
Bill Nelson, president of Soltra and president and CEO of FS-ISAC, said: “As a joint venture, Soltra has assembled a world-class team and support from some of the most respected companies in the world in order to … build a solution for tomorrow’s information sharing.”
“Today’s threat intelligence sharing must occur at network speeds. It needs to reduce the workload for security analysts and for smaller organisations. It needs to be available for all critical sectors in order to share information within each sector and also cross-sector to increase resiliency from cyber threats.”
Currently being user tested, the solution will be generally available late 2014.
NO FEE, NO RISK 100% ON RETURNSIf you invest in only one asset servicing news source this
year, make sure it is your free subscription to Asset Servicing Times