Anomali and Department of Homeland Security Collaboration Enables Groundbreaking Automated Public/Private Sector Cybersecurity Information Sharing

Automated, Anonymized Public/Private Threat Intelligence Sharing Enables More Effective Protection of National Critical Infrastructure and Attacks Against U.S. Organizations

September 13, 2016

3 Min Read


REDWOOD CITY, CA – (9/12, 2016) - Anomali, the provider of the market-leading ThreatStream threat intelligence and Anomali Enterprise platforms, today announced the successful integration between the Anomali platform and the Department of Homeland Security (DHS) Automated Indicator Sharing (AIS) system. AIS allows private sector entities, federal agencies, and state and local governments to anonymously share cyber threat indicators at machine speed, allowing participants to mitigate cyber threats in real-time. Customers of Anomali now have the opportunity to opt-in to the information sharing program and immediately benefit from the process of receiving pertinent security event information such as IP addresses, domain names, hashes and actor tactics, techniques and procedures.

“Since its inception, the goal of Anomali has been to facilitate information sharing in a secure and effective manner between like-minded communities,” said Hugh Njemanze, CEO of Anomali. “By contributing intelligence into a trusted and secure platform, enterprises and government agencies alike can paint a clearer picture of the threat landscape and truly close the gap with the adversary.”

This effort signifies an important milestone toward fully automating two-way sharing of threat intelligence and anonymous sharing indicators of compromise (IoCs). By providing the backbone technology for voluntary information sharing between the public and private sectors, Anomali aims to close the cybersecurity skills gap, improve the overall security posture and enhance the identification and remediation of cyberattacks against U.S. organizations. 

Voluntary collaboration between public and private-sector entities will dramatically improve the skillsets of information security professionals within security operations centers, incident response teams and the industry in general. Moreover, the technology provided by Anomali breaks down the barriers that often hold security teams back from making threat intelligence actionable by enabling the automatic integration of IoCs into an organization’s existing security infrastructure to pinpoint, remediate and mitigate threats.

“Anomali is pleased to work with DHS to help advance automated indicator sharing,” said Todd Helfrich, vice president of federal at Anomali. “Anonymous, bi-directional information sharing between the Anomali platform and the DHS AIS system is a major milestone for public and private sector relations.”

In addition to integrating with the DHS AIS, Anomali Labs will contribute data from its open source Modern Honey Net project to DHS’s National Cybersecurity and Communications Integration Center (NCCIC). Anomali is also a participant in DHS’s Cyber Information Sharing and Collaboration Program (CISCP), DHS’s flagship program for public-private information sharing. CISCP is a comprehensive, strategic information sharing program and involves analyst-to-analyst collaboration and the sharing of a variety of analytical products regarding cyber threats.

For more information on the AIS project, please visit the DHS AIS website here:


Follow us on Twitter: @Anomali
Follow us on LinkedIn
Join us at our first-ever Threat Intelligence industry event, Anomali Detect9/11-9/13


About Anomali
Anomali delivers earlier detection and identification of adversaries in your organization's network by making it possible to correlate tens of millions of threat indicators against your real time network activity logs and up to a year or more of forensic log data. Anomali's approach enables detection at every point along the kill chain, making it possible to mitigate threats before material damage to your organization has occurred. Headquartered in Redwood City, Calif., the company is privately held and has received venture capital backing from General Catalyst Partners, GV, Institutional Venture Partners, and Paladin Capital Group, as well as individual investors. To learn more, visit and follow us on Twitter: @anomali.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights