Trend Micro unveils Vision One Platform with next-gen XDR and AI capabilities
Trend Micro has unveiled the next generation of cybersecurity platform, setting a new standard for strengthening security posture and threat defence.
The new Trend Vision One platform release marks a significant leap forward in enterprise cybersecurity, encompassing robust attack surface risk management, cross-layer protection across hybrid environments, and next generation XDR, now amplified by powerful generative AI technology.
The platform's advanced Extended Detection and Response (XDR) capabilities include the broadest set of native security sensors to deliver the most comprehensive and cross-domain threat protection, by consolidating data across internal and third-party sources, utilising advanced AI and machine learning analytics, and correlated detection models, the platform brings the next generation of XDR to market.
According to Trend Micro, with unmatched visibility and insights into events, enterprises achieve more proactive defence, earlier detection, and faster incident response through capabilities including:
Cross-layer, hybrid environment support
Trend Vision One protects every layer of an organisations diverse IT infrastructure including endpoints, servers, email, cloud services, networks, 5G, and OT (Operational Technology). Trend has the unique advantage of being able to leverage its breadth and depth of capabilities across Cloud Security, Network Security, and Email and Endpoint Security natively in the platform. The platform also supports hybrid environments; empowering organisations to protect their assets across all environments cloud, hybrid, or on-premises without compromising security or the ability to extend to XDR.
Third-Party Ecosystem Integrations
Trend Vision One has tripled its integration ecosystem across third-party and partner networks over the last 12 months. Community- driven integration efforts enable enterprises to leverage integration to propel security organisations forward with consolidated visibility and analysis and streamlined workflow automation and orchestration.
Global Threat Intelligence
Underpinning the platform, is the company's leading global threat intelligence. With 16 research centres around the world; hundreds of threat researchers; and the Zero Day Initiative the number one bug bounty program in the world global and local intelligence feed the platform to help customers stay one-step ahead of adversaries. Trend intelligence unlocks deep breach activity and vulnerability intelligence with real-time threat insights, threat actor profiling, and end-to-end visibility into campaigns to rapidly understand and thwart attack attempts.
Expert Managed Services
Delivered together with the platform, Trend Micro brings greater simplicity and support to security operations with the broadest vendor-delivered managed detection and response (MDR) service on the market, augmenting internal teams with advanced threat detection, proactive threat hunting, rapid incident response, expert guidance, and continuous 24/7 monitoring and support.
By consolidating data across internal and third-party sources and utilising advanced AI, machine learning analytics and correlated detection models, the platform brings the next generation of XDR to market defending against the full range of adversarial tactics and techniques, including extortion, DDoS, ransomware and more.
Platform Supercharged by Generative AI
Trend brings transformative generative AI capabilities into its Trend Vision One platform, with the introduction of Trend Vision One Companion an AI-powered cybersecurity assistant. Companion AI amplifies security operations, boosts productivity and efficiency, and accelerates threat detection, response, and cyber risk management for analysts of all skill levels. This marks the initial phase of a multi-quarter rollout of AI and LLM capabilities embedded within Trend Vision One.
Enhanced Accessibility and Efficiency
Companion empowers new analysts to contribute more quickly while enabling senior analysts to swiftly comprehend complex scenarios, facilitating better-informed decisions. This helps organisations and security leaders bridge the skills gap and manage their operations more effectively.
Improved Hunting with Speed, Confidence, and Accuracy
Transforming plain- language search queries into formal search syntax, Companion enables rapid generation and execution of queries, unveiling relevant information for proactive threat response actions and minimising adversarial movement.
Accelerated Workflows and Reduced Friction
Gain plain-language explanations of cross-layer event alerts, attacker scripts, and command lines, access deep analysis and contextual AI-driven mitigation recommendations, and automate email, help-desk ticketing, and incident reporting, streamlining processes and enhancing efficiency.
Amplified Impact via Platform Power
With cross-layer native sensors, market-leading threat intelligence, and robust integration capabilities, Companion extends its reach throughout the customer environment, guiding and prioritising top risks, threats, and vulnerabilities, including newly discovered Zero Days, with precision. By working in harmony with Trend Vision One, Companion eliminates the risks associated with task-switching and alert fatigue.
Trend's generative AI and LLM capabilities prioritise security and compliance in line with the requirements of this emerging technology. Stringent measures are in place to ensure visibility into how each model handles corporate data. Furthermore, additional controls and isolation mechanisms are implemented to prevent the mixing of Trend's LLM with instances and training data from other vendors.
"Delivering on the promise of XDR requires replacing complexity with simplicity, replacing bundles of products with integrated platforms," says Frank Dickson, Group Vice President, Security & Trust, IDC.
"Trends approach offers tangible benefits for security professionals by tightly integrating its products through greater consolidation, resulting in increased productivity and effectiveness of security professionals. And its support for hybrid environments means that for those in the real world that still have on-premises IT environment as well as cloud deployments that they will realise the benefits of XDR whenever they are."
Proactive Attack Surface Risk Management (ASRM) Grounded in Zero Trust Principles
Trend Vision One empowers organisations to build resilient cyber programs and proactively manage risk, thwarting potential events and breaches with cutting-edge attack surface risk management. Leveraging continuous attack surface discovery and real-time risk assessment, businesses can swiftly identify and remediate critical risk, including vulnerabilities and exposures, based on likelihood and impact of attack.
The core components of Trend Vision One's Attack Surface Risk Management include:
Cyber Asset Attack Surface Management (CAASM)
Trend Vision One ASRM maximises existing investments and security infrastructure by leveraging data sources already deployed in the environment to provide deep visibility and insight into an organisation's cyber asset landscape, ensuring proactive monitoring, risk assessment, and vulnerability management to prioritise and safeguard critical assets.
External Attack Surface Management (EASM)
Risk management cannot be effective in silos. Trend Vision One EASM is integrated into the broader ASRM solution to enable defenders to gain a comprehensive outside-in view of the digital estate to identify potential threats and proactively mitigate risk originating from outside the network perimeter.
Cyber Risk Quantification (CRQ)
Security leaders can confidently communicate cyber risks, security posture, and resilience planning to the board, executive management, and compliance teams with proprietary and transparent cyber risk quantification reporting. Real-time, contextualised risk data ingests high-fidelity attack data, vulnerability and exposure insights, and security configuration and control status to quantify and benchmark performance, improve situational awareness, and prioritise critical actions.
\With continuous internal and internet-facing asset discovery, real-time visibility, and assessment Trend Vision One accelerates the journey towards never trust, always verify zero trust architectures a highly desired but challenging-to-implement security framework.
For the first time, organisations can now manage granular security controls, policy enforcement and policy decision points from a single platform to monitor, manage, and automatically execute dynamic data-driven security controls based on ASRM insights and integrated attack path management to reduce complexity and orchestrate least privilege access with little manual effort.
With a clear path toward operationalising zero trust, organisations can more effectively minimise their attack surface, slow attackers down, and protect against malicious and non-malicious insider threats, ensuring compliance and data protection.
Empowering Partner Delivered Security Services
Trend Vision One positions Trend and its MSSP partners to provide the most powerful solution on the market, addressing critical industry needs including the ability for MSSP partners to deliver a wide range of cyber services, including ASRM and XDR use cases Extremely broad set of integrations into the IT environment Strong multi-customer management functionality Reduction in MTTR (mean time to respond, repair, resolve, recover) across the board.