New Trellix Enhancements Aid Analyst Efficiency, and Create Deeper XDR Detections

By Grant McDonald · November 12, 2024

You wouldn’t ride a bike with spokes but no hubs and you shouldn’t conduct your security with multiple tools but no integrated workflows. The user experience and the ability to secure your enterprise are often at odds in environments with multiple vendors, interfaces and tools. But that doesn’t mean they have to be.

The latest release of Trellix Helix Connect is now available globally and offers increased detection of multi-stage threats , deeper detection use cases and several new applications within the user experience to make security teams more efficient.

We’ve added more cross-vector, lateral movement, data theft, credential theft, cloud surface and email attack detection use cases to give a more holistic view of threats. This also Increases our multi-stage detection and analysis abilities so you understand the complete story of a threat, much faster! Additionally, thanks to the more advanced cross-vector detections that are created, alerts are more targeted with volumes lowered even further.

The user experience is simplified and made more efficient by the introduction of five new, highly intuitive applications within our console:

1. Alerts: A new alerts management tool creates prioritized alerts using GenAI, automatically enriches alerts, empowers automation or click-to-respond depending on your preferred approach.
2. Global Search: Gives analysts improved visibility, better results, and the ability to create and save queries or rules.
3. Rule Management: Empowers analysts with point and click rule configuration, monitoring, and mitigation steps.
4. Integrations Hub: A replacement to the Cloud Connect area of Helix Connect, the Integrations area enables users to simply click to integrate with different data sources. Once selected,they can choose preferences for ingesting data and create automated tasks for each integration performed.
5. Case Management: This provides a collaborative workbench for teams to create cases, assign or escalate them to team members, associate alerts, add notes, attach files and screenshots.

In addition to these improvements, both current and new customers can access Trellix Wise for GenAI-powered alert triage and auto case generation. Wise Triages 100% of alerts in under three minutes and saves 8 hours of work for every 100 alerts it investigates. When paired with Trellix EDR, Wise not only creates higher fidelity alerts, it enables GenAI powered investigations and response.

The security landscape is ever evolving, so we must continuously evolve and improve our tools to help you stay ahead of threats. This latest release of Helix Connect delivers on our commitment to help security teams get to the insights that make detection, response and threat hunting faster with fewer manual steps. The new applications, detection use cases and alert triage powered by Trellix Wise will help you recover hours of work. The only question is what will you do with all that?

Want to see it for yourself? request a demo, view the Trellix Helix Connect tour to see how we can help you realize XDR or see our GenAI in action with the Trellix Wise product tour.