DTCC and FS-ISAC launch cyber threat “beacon” system
A platform for sharing cyber-security threat intelligence among financial services companies has been launched by US post-trade utility the DTCC and non-profit security organisation FS-ISAC. Called Soltra Edge, the platform gathers data about cyber-security threats and converts it into a standardised format for sharing.
The platform uses open standards, including Structured Threat Information eXpression, a formatting language, and Trusted Automated eXchange of Indicator Information, a protocol for routing threat information.
Soltra Edge is part of the Soltra joint initiative, which was started by the two organisations in September. Soltra itself focuses on automation solutions for cyber-security. The basic licence for Soltra Edge is free, but there will also be two premium versions available, which will contain additional features on scalability and redundancy. Soltra itself will offer maintenance and support for the platform, as well as assistance on deployment and integration.
“Soltra Edge disrupts the cyber-security status quo by putting safeguards in place to better protect organisations of all sizes from cyber-attacks,” said Mark Clancy, chief executive of Soltra, chief information security officer of DTCC and board member of FS-ISAC. “With Soltra Edge, automating the threat intelligence analysis lifecycle is easy, effective and free to license.”
Soltra Edge is named after the medieval Scottish location that was part of a network of beacon fires used to warn against invaders. Then as now, the idea is to relay information to where it is needed so that any potential threat can be headed off before it gets out of hand.
“Information sharing and coordination across the financial sector are essential to mitigate cyber threats,” said Karl Schimmeck, managing director, financial services ops, SIFMA. “FS-ISAC and DTCC and their Soltra Edge solution will help financial institutions to get actionable information faster, streamline workloads and leverage a community defence model to protect against all types attacks, threats and vulnerabilities.”