Overview

The Nozomi Networks Threat Feed is a data feed of the latest emerging threat data from across the industry that can be used outside or independent of our Guardian and Vantage platforms with other third-party security platforms.

This data feed is comprised of Nozomi Networks' operational technology (OT) Indicators of Compromise (IOCs). It can be used by any security platform that can ingest Industry-compliant Structured Threat Intelligence eXpression (STIX 2.0) Objects. The content is hosted on Nozomi Networks Trusted Automated eXchange of Intelligence Information (TAXII) server in the cloud and can be accessed globally.

TI feeds provide information on attacks, including zero-day attacks, malware, botnets and other security threats. TI feeds are vital components of security infrastructure, which help identify and prevent security breaches. Threat intelligence can be used to implement more granular security policies, as well as to identify potential characteristics or behaviors associated with that threat. The new Threat Feed is consistent with the Nozomi Networks Threat Intelligence subscription, which is solely for use in Nozomi Networks' own Guardian and Vantage products but allows other platforms to leverage the research and intelligence on recent and emerging threat indicators and how they are spreading. It does not include more sophisticated Nozomi Networks packet rules or YARA rules. Threat Feed allows other platforms to leverage Nozomi Networks research and intelligence on recent and emerging threat indicators and how they are spreading. The feed delivers a single, unified source of data, including malicious IP addresses or URLs, new indicators of compromise (IOC) signatures, threat sources, malware hashes, and methods and tactics to gain system access, all of which can serve to accelerate incident response and enhance security operations.

Highlights

Anticipate: Assess risk profiles across assets and sites based on the latest indicators of compromise.
Diagnose: Identify threat actors, their methods and vectors to gain access to OT or IoT systems.
Respond - Disrupt and develop effective strategies for defending against attacks in a variety of platforms.

Details

Sold by

Nozomi Networks

Features and programs

Financing for AWS Marketplace purchases

AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.

View financing details

Pricing

Nozomi Networks OT & IoT Threat Intelligence Feed

Info

View purchase options

Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.

12-month contract (2)

Info

Dimension	Description	Cost/12 months
Threat Intelligence Feed: Single Site - 1 Year	Threat Intelligence Feed for a single site - 1 year (prepaid). Includes support. Nozomi Networks IOCs (Indicators of Compromise) served via TAXII (Trusted Automated eXchange of Indicator Information) in STIX (Structured Threat Information Expression) format for ingestion into third-part security and management solutions for the purpose of utilizing Nozomi Networks Threat Intelligence on platforms other than Nozomi Networks. The base site license is designed to be used by a single SOC (Security Operations Center) and not to be distributed to other adjacent departments within the customer organization.	$37,060.00
Threat Intelligence Feed: Multi-site - 1 Year	Threat Intelligence Feed for multiple sites - 1 year (prepaid). Includes support. Nozomi Networks IOCs (Indicators of Compromise) served via TAXII (Trusted Automated eXchange of Indicator Information) in STIX (Structured Threat Information Expression) format for ingestion into third-part security and management solutions for the purpose of utilizing Nozomi Networks Threat Intelligence on platforms other than Nozomi Networks. The multi-site license is designed to be used by all SOCs (Security Operations Centers) throughout the organization.	$370,600.00

Vendor refund policy

https://www.nozominetworks.com/legal/vantage-tsla/

Legal

Vendor terms and conditions

Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

Content disclaimer

Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

Usage information

Info

Delivery details

Software as a Service (SaaS)

SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

Resources

Vendor resources

Threat Intelligence Solution Brief

Support

Vendor support

Customers can access our support portal at:

Get support

AWS infrastructure support

AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

Get support

Similar products

Nozomi Networks Vantage OT & IoT Security Solution

By Nozomi Networks

SaaS-Powered Security and Visibility of OT and IoT Networks

View product

Customer reviews

Write a review

Ratings and reviews

Info

0 ratings

5 star

4 star

3 star

2 star

1 star

0 AWS reviews

1 external reviews

External reviews are sourced from G2 and are not included in the star rating for this product.

Oil & Energy

Nozomi offers excellent OT IDS

Reviewed on Oct 10, 2023

Review provided by G2

What do you like best about the product?

Nozomi includes detection algorithms to identify OT network intrusions and maliscious traffic. Has excellent user interface to display inbound / outbound traffic patterns.

What do you dislike about the product?

Cost of the Nozomi solution is high, but compared to other intrusion detection and protection systems, it fits into cyber security budget constraints and considerations.

What problems is the product solving and how is that benefiting you?

Visibility into OT network, detection of outdated operating systems, application software and providing single pane of glass for OT environments that include useful information.