API 2.0 Overview API 1.0 to 2.0 Migration Guide What's New
Action Usecase Alerting Usecase Analysis and Response API's Building Search Queries Configuration Backup Restore and Export APIs Enrichment Usecase Groups Usecase Mimecast API In Power BI Secure Email Gateway SIEM Tutorial CG SIEM Tutorial CI SIEM Batch CG Guidelines SIEM Batch CI Guidelines
API 2.0 Reference API 1.0 Reference
Technology Partners
Become a Partner

LevelBlue USM Anywhere

Developed by LevelBlue USM Anywhere

Enhanced Cyber Resilience with Mimecast and LevelBlue

Integrating Mimecast and LevelBlue USM Anywhere enables organizations to better safeguard against cyberattacks and obtain visualization and insight into security threats. By integrating Mimecast email security data with LevelBlue USM Anywhere XDR platform, joint customers can leverage the full benefits of their investments while improving their organization’s overall cyber resilience against the most widely used attack vectors. In addition, organizations can more easily track threats that pervade IT environments while gaining contextual and behavioral information for threat hunting, investigation and response.

logo-levelblue.png
Developer: LevelBlue USM Anywhere
Contact: Contact LevelBlue
Documentation: View
Release Date: October 2024
Version: 1.0
Get Started

Solution overview

  1. As inbound emails are received by Mimecast on behalf of the organization, they are subject to analysis by the Mimecast inspection funnel, where a series of email hygiene and advanced security scanning techniques are applied, to ensure that emails are safe before they are delivered to the recipient.
  2. Email intelligence produced by Mimecast is sent to LevelBlue USM Anywhere for normalization.
  3. LevelBlue USM Anywhere uses the email intelligence to alert analysts and add context to data from other sources.
levelblue_pic1.webp

Mimecast + LevelBlue use cases

Coordinated response aiding in:

icon_BCircle_ThreatScan.png

Threat intelligence

Understand how your organization has been targeted and what attacks have been blocked for better protection. Analyse activity events before and after an attack across the entire attack chain to enhance analyts productivity and remediate vulnerabilities.
05BLOG_1.jpg
Icon_Bcircle_correlation.svg

Threat investigation

Analyze activity events before and after an attack across the entire attack chain to enhance analyst productivity and repair vulnerabilities.
05BLOG_1.jpg
icon_Bcircle_compass.svg

Threat correlation

Identify initial attack deployment methodology, characteristics, and subsequent access attempts across the security landscape without the need for manual effort or multiple toolsets.
05BLOG_1.jpg
05BLOG_1.jpg
05BLOG_1.jpg
05BLOG_1.jpg

Key benefits

01.

Expanded data gathering

Connect the dots with better, centralized visibility and information gathering.

02.

Advanced analytics

Improve time to detect with threat intelligence that provides context and correlated insights.

03.

Automated and orchestrated workflows

Accelerate response and recovery to reduce damage and minimize downtime.

LevelBlue resource

Read more about LevelBlue by accessing the resource below.

Read now
Back to Top