Mimecast for IBM QRadar

Add Mimecast data to your IBM QRadar environment

 

Developed by Mimecast
Support contact Mimecast
Documentation Installation Guide
Download Mimecast for QRadar

 

Overview

The Mimecast integration with IBM QRadar offers joint customers improved visibility into potential vulnerabilities, ongoing attacks, prioritized incident response alerts and an overall increased security posture through one single console.

With email remaining the number one attack vector, it’s more important than ever to bring email security data into a single platform. The Mimecast for IBM QRadar app offers organizations better detection and alerting before, during and after an attack. Integrating Mimecast data into the IBM QRadar security intelligence platform through the Mimecast data logging API allows email security data to be correlated against other data sources, and be included in behavioral anomaly detection helping to identify indicators of advanced threats in real-time, that would otherwise go unnoticed.

Mimecast and IBM customers can better predict and prioritize what vulnerabilities to remediate through improved visibility of attacks with highly focused alerts. These alerts allow security teams to respond faster and with more certainty which helps contain and limit the impact of an attack. Additionally, joint customers can benefit from an increased security posture by leveraging one single system for threat intelligence and response.

IBM Main Screenshot

Release notes

Version: 1.0.4

  • Integrate Mimecast security data
    • Gateway, audit and Targeted Threat Protection logs
  • Mimecast security data is mapped to QRadar event ID's
  • Pre-defined searches for simpler data visibility