Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Security Intelligence Overview

Juniper Networks Security Intelligence (SecIntel) is a protective framework that utilizes cloud-based security data to guard against emerging threats. SecIntel delivers reliable and vetted intelligence from top industry threat sources through Juniper ATP Cloud to Juniper Security Director Cloud.

SecIntel profiles for SRX Series Firewalls in Juniper Security Director Cloud block harmful and undesirable traffic including Command and Control (C&C) communications, compromised IP addresses or subnets, and domains associated with nefarious activities.

SecIntel profile groups combine C&C, DNS, and infected-host profiles. You can apply these profile group to security policies. If an infected host in the cloud network attempts to connect with a potential C&C server online, the SRX Series Firewalls mitigate these threats according to the deployed security policies.

Figure 1: SecIntel Profile Group SecIntel Profile Group

SecIntel Configuration Workflow shows the high-level steps for SecIntel configurations.

Figure 2: SecIntel Configuration Workflow SecIntel Configuration Workflow

You can create a C&C profile, a DNS profile, an infected hosts profile, and edit, clone, and remove these SecIntel profiles.

To access this page, select Secure Edge > Security Subscriptions > SecIntel > Profiles.

SecIntel Benefits

  • Detects and blocks known malicious IP addresses and DNS requests.

  • Quarantines compromised internal hosts.

  • Identifies connected devices that are at risk.

  • Shuts down attacks before they start.

  • Protects users, applications, and infrastructure from compromise.

  • Turns connectivity layers into security layers without additional infrastructure.

Related Documentation