From Detection to Security Insights
By integrating Mimecast with Google Chronicle, organizations gain search and correlation capabilities across all log types to detect and respond to cyberattacks and defend against growing threats while modernizing and scaling security operations through integrated visibility, detection, investigation, and response.
Solution Overview
- Emails received by Mimecast are passed through a series of hygiene scanning techniques, to ensure that they are safe before delivery to the recipient.
- Email intelligence provided by Mimecast is sent to Google Chronicle for normalization.
- Google Chronicle uses the email intelligence to alert analysts and add context to data from other data sources.
- With Google SOAR automate the management and response to phishing emails.
Mimecast + Google Chronicle Use Cases
Mimecast data adds additional context within Google Chronicle to aid:
Threat correlation
Advanced threat detection
Lateral movement detection
Alert prioritization
Threat intelligence
Threat investigation
Benefits
Earlier detection and containment of attacks, with rapid response to phishing and business email compromise tactics.
Google Chronicle and threat intelligence enrichment detects threats within Mimecast events.
Increase protection, reduce resource utilization, and improve analysis and knowledge of threats through visualization.
Correlation across Mimecast events, cloud, endpoint, and network data to quickly identify high-risk individuals and devices that may create future security breaches.