McAfee and FireEye Merger Creates Trellix, a Unified XDR Security Company

Trellix, a new company formed from the merger of cybersecurity giants McAfee Enterprise and FireEye, aims to become the leader in XDR (extended detection and response) technology by combining applications from the two previously separate companies into an interoperable suite. products against threats. prevention, detection and response.

The company’s strategy and new name were unveiled this week by parent company Symphony Technology Group (STG), which acquired and merged McAfee Enterprise and FireEye last year. The new product suite will cover endpoint and network infrastructure security, offer programs tailored to SOCs (security operations centers) and increasingly incorporate machine learning and automation, officials said. of the company.

STG also said it plans to launch the McAfee Enterprise Secure Service Edge (SSE) portfolio as a separate company later this quarter, including its Cloud Access Security Broker (CASB), Secure Web Gateway (SWG), and Zero Trust Network Access (ZTNA) apps.

Machine learning, driving XDR automation from Trellix

As for Trellix, the name is meant to evoke the structure of a trellis, designed to support the structured growth of plants, and complement a concept that Trellix calls “living security” – security technology that learns and adapts, by using machine learning and automation capabilities. , to protect operations against evolving and advanced threat actors.

The company will compete with XDR vendors in a rapidly growing field, including Cisco, Microsoft, Check Point Software, VMware, CrowdStrike and Palo Alto Networks.

The Threat Labs branch of Trellix, which collects security telemetry from sensors embedded in IT infrastructure globally, will play an important role.

“Trellix has a differentiated ability to secure the digital experience against cyber threats using threat intelligence capabilities developed through the scale and diversity of our sensor network,” according to Adam Philpott, CRO (Chief Revenue Officer ) at Trellix. “We continuously deliver new solutions leveraging AI, machine learning and advanced telemetry based on threat intelligence from over a billion sensors across our enterprise and enterprise customer bases. governmental.”

“Living Security” will provide organizations with resilience to threats through this vast network of

interconnected sensors and threat capabilities, allowing customers to securely manage a “living” IT ecosystem optimally configured for their organization, according to Philpott.

The products that make up Trellix’s XDR platform generate and manage safety data from native tools and also have the ability to apply analytics to third-party applications, says Philpott.

New releases of security products expected this year

Components of Trellix’s XDR platform will be made available to customers in successive product releases, Philpott said.

Merging and upgrading products on such a scale, and bringing in customers, is expected to take some time. “This attempt to combine what were once two security giants is no small feat,” said Forrester analyst Allie Mellen. “Depending on the offering, it will likely take years to transition all customers to new or rebranded products and services.”

Still, some new offerings should be available relatively soon, with company officials confirming that Trellix plans to roll out separate EPP (endpoint protection platform) and EDR (endpoint detection and response) products this year. Both McAfee and Fire Eye offer endpoint security products, with McAfee focusing on its well-known antivirus software, which falls under EPP, and Fire Eye on intrusion detection and response, commonly considered EDR.

Otherwise, Trellix also plans to integrate its SIEM (security information and event management), SOAR and UEBA (user entity behavior analysis) products into an offering for SOCs. While FireEye Helix, a SaaSThe security operations platform based on risk detection and response will be a key part of this offering, McAfee’s Enterprise Security Manager SIEM application will continue to be offered, company officials confirmed.

Although Trellix promises a quick and smooth transition, customers will need to prepare for some growing pains as Trellix internalizes its brand identity, according to Mellen.

But while corporate mergers have often shown that it’s difficult to merge products from different companies, McAfee and Fire Eye applications have evolved over time and have been in the hands of customers for quite some time, there is no So there might not be “too much excitement,” according to Constellation Research analyst Liz Miller.

“Users who want to roll in the XDR solution should have no problem and at this stage of their maturity; I would expect to see some nice incentives to upgrade to the extended solution,” says Miller. “But, over the next six to 12 months, customers should proactively assess performance and even increase those calls in [their vendor] customer success and support teams to ensure seamless service continuity. »

McAfee’s repeated attempts to rebrand

This isn’t the first time McAfee has tried to reinvent itself. The global security company was acquired in 2010 by chipmaker Intel to make it part of its Intel security division. However, in 2016 Intel decided to reduce its stake in the company by selling 51% control to TPG Capital, which then saw the McAfee brand return and retained until October 2020 when McAfee returned to the public markets. with an IPO. Shortly thereafter, in March 2021, McAfee agreed to sell its enterprise security business for $4 billion to STG, a private equity firm.

Company officials say McAfee and Fire Eye will be retired as company names and the McAfee Enterprise Secure Service Edge (SSE) wallet will eventually be sold under another company name.

Industry insiders have speculated that one of the main reasons for the rebranding is an attempt to distance the company from its founder, cybersecurity pioneer John McAfee, who was found dead last week. last year in a Spanish prison, apparently by suicide, after a series of criminal charges by the US government. and several lawsuits have been filed against him.

“This is a really smart branding move by Symphony Technology Group that eliminates all outrage and focuses on providing a solid (truss-like) security foundation,” says Miller. “It gives this newly-knit team a new focal point that comes without any scandal or vindication.”

Copyright © 2022 IDG Communications, Inc.

Comments are closed.