Trellix Forms “Advanced Research Center” to Enhance Product Intelligence and Capabilities
“One of the most important things that we can help our customers with is just bringing them the right information, the right content,” says CEO Bryan Palma.
The introduction of a new partner program and product initiatives aren’t the only things Trellix has unveiled recently.
The cybersecurity giant announced just ahead of this week’s Trellix Expand 2022 conference that it was creating a new “advanced research center” within the company to enhance its global threat intelligence capabilities.
“One of the most important things we can help our customers with is just bringing them the right intelligence, the right content,” said Bryan Palma, managing director of San Jose, Calif.-based Trellix, the principal XDR offers provider. .
[RELATED STORY: Trellix Channel Chief Shares How to Build a Services Practice with XDR]
Palma told CRN that creating the new center involved bringing together units from the former FireEye and McAfee Enterprise entities that were combined earlier this year to create Trellix, which is owned by private equity firm Symphony Technology Group.
“We have some of the most talented researchers and investigators in the industry,” Palma said. “With the amount of installed technology we have, we’re seeing a lot of telemetry that helps us create the intelligence needed to power our systems and specifically to power our XDR platform.”
“The Advanced Research Center is the coming together of multiple research and product research capabilities within Trellix,” Aparna Rayasan, chief product officer at Trellix, told CRN.
She said the new center, which employs nearly 300 staff, is built on “five pillars”: product research and development, threat intelligence, resilience and adversary defense, research engineering and data science.
Each “pillar” contributes to better intelligence gathering and analysis, as well as better products and services overall, she said.
“It creates efficiencies,” she said. “It creates the differentiation of our products. And it also helps us leverage vast data. … It certainly covers a lot more ground than we otherwise would.
Rayasan, who is currently looking for a permanent director for the new center, said she “absolutely” sees the center growing in the future.
In particular, she praised the Threat Intelligence Unit and said she was actively hiring “very experienced” personnel. She noted that many of Trellix’s threat intelligence employees came from former positions in the US military and government agencies.
The center has already identified a cybersecurity threat that has garnered a little attention over the past week – a 15-year-old vulnerability in the open-source Python programming language that still lurks in existing code and theoretically puts 350,000 open-source coding projects at risk.
Douglas McKee, director of vulnerability research at Trellix, said his team found no recent malicious use of the Python vulnerability. But the vulnerability, if left unpatched, could still be used to launch supply-side attacks, even though it was created in 2007, he said.
McKee, whose team is now part of the new Trellix Advanced Research Center, said he was hoping and waiting for new information.
“I’m really excited to see Trellix implementing this Advanced Threat Center,” he said. “(It) helps to combine an elite group of researchers towards a common goal. I think it’s really going to have a positive impact for the company and the industry going forward.