Cisco TALOS

Cisco Talos is one of the largest and most trusted providers of cutting-edge security  research globally. 

Talos has more visibility than any other security vendor in the world and unique capabilities and scale in intelligence. 

Talos' threat intelligence supports a two-way flow  of telemetry and protection across market-leading security  solutions including Next-Generation Intrusion Prevention System (NGIPS), Next-Generation Firewall (NGFW), Advanced Malware Protection (AMP), Email Security Appliance (ESA), Cloud Email Security (CES), Cloud Web Security (CWS), Web Security Appliance (WSA), Umbrella, Stealthwatch, and ThreatGrid, as well as numerous opensource and commercial threat protection systems. 

Talos has built one of the most comprehensive intelligence  gathering and analysis platforms in the industry Through the ClamAV®, SNORT®, Immunet®, SpamCop©, Talos Reputation Center, Threat Grid®, and other Talos user communities we receive valuable intelligence that no other security research team can match.

With industry groups like the Cyber Threat Alliance, intelligence gets into the right places faster, enabling broader interdiction on multiple fronts simultaneously. With the Microsoft Active Protection Program (MAPP), Talos is notified of targeted threats to push coverage simultaneously to patch activity from large vendors such as Microsoft and Adobe. ISAC programs facilitate intelligence and specific insights in targeted verticals. Through collaboration with users and customers around the globe utilizing our Crete program, Talos can detect regionalized threats as they emerge.

Over 185 industry partnerships,  customer feedback, hunting intel, actor tracking, and  even forward-looking vulnerability discovery contribute vital intelligence and context. 

Over 500 researchers, analysts, engineers, linguists, developers, and other operators work around the clock, around the globe digging deep into threats, tracking actors, creating and shipping detection, and adding deep, meaningful context to threat intelligence.

When new vulnerabilities are discovered, Talos releases coverage to protect against these zero-day threats while the affected vendors develop and test their patches. Even if attackers uncover those same vulnerabilities while the vendor is patching, Cisco customers have coverage while waiting for the patch.

AMP customers experience median time-to-detection (TTD ) of 3.5 hours versus the industry average of over 100 days.