SAN MATEO, CA April 9, 2015 –Norse, the leader in live attack intelligence, today introduced the Norse Intelligence Service™, a unique fusion of automated and human threat monitoring and analysis that offers “early warning as-a-service” for the very large, extended enterprise networks of Fortune 500 and government organizations. Offering around-the-clock continuous threat monitoring, the new Norse Intelligence Service patrols complexly intertwined customer, partner and supplier networks from the outside-in to identify compromised systems, spot malicious activity and track attacks while they’re still underway.

“The need for expert threat monitoring and analysis has never been greater, but intelligence experts have never been more difficult to hire,” said Tommy Stiansen, CTO at Norse, with even the largest, most sophisticated organizations having trouble filling the talent gap, said Tommy Stiansen, CTO and co-founder of Norse, “ “Meanwhile, the threat landscape has become wildly asymmetrical, with individual companies fending off daily attacks from nation-states, terrorist organizations, multinational organized crime syndicates and thousands of hackers. The new Norse Intelligence Service is designed to fill that talent gap, and level the playing field.”

Even in the most security-savvy companies, only 20 percent of attacks are identified by internal security organizations, according to the 2014 Verizon Data Breach Investigations Report. To make matters worse, security and intelligence talent today is virtually impossible to hire. The U.S. Department of Labor estimates that in 2014, more than 200,000 information security jobs went unfilled in the United States alone. The Norse Intelligence Service helps Fortune 500 companies and government organizations address this by combining a globally distributed network of attack sensors – the Norse Intelligence Network — with automated actuarial-based risk scoring and scalable, on-demand human analyst expertise from Norse.


The Norse Intelligence Service helps subscribers catch incursions and exfiltrations early, to head off more massive breaches – and costs. Automated attack telemetry from the global Norse Intelligence Network™ is refined and enriched by Norse’s in-house team of professional cyberintelligence and counterintelligence fusion analysts, then delivered directly to customers. Detailed weekly, monthly and quarterly threat reports distill mountains of intelligence data into concise customized recommendations that executives can act on. Written by Norse professional analysts hand-picked for each customer, these reports provide the irreplaceable human touch and experts’ critical eye.

Requiring no on-premise hardware or software, the Norse Intelligence Service can either be configured to focus on a single network, or take a broader view to find compromises on intertwined customer, supplier and partner networks. A web-based  dashboard shows attacks on (or emanating from) networks and detailed forensic data that helps analysts pursue deeper investigations. Alerts can be delivered through the portal, via email or by SMS for more urgent situations. Attacks and indicators of compromise (IOCs) can be filtered or sorted by geolocation of aggressors or targets, protocol, device type, traffic volume, attack velocity or risk score. It can help popular analyst tools more quickly disqualify benign events and focus in on more dangerous incursions. Finally, the Norse Intelligence Service provides enterprise SOCs (security operations centers) with visual alerts via an customized version of the popular Norse Attack Map,, tailored to each customer’s assets and networks of interest.

Availability and Pricing

The Norse Intelligence Service will be available beginning April 20, 2015. Pricing varies with network range size and specific service package desired. For more information or a quote, email [email protected]


Norse at RSA

Norse will be showcasing the new Intelligence Service alongside a full range of other Norse enterprise threat intelligence offerings in Moscone South Expo Hall booth 2145 during the upcoming RSA® Conference 2015 in San Francisco, April 20-24.


About Norse

Norse is the global leader in live attack intelligence, helping companies block the threats that other systems miss. Serving the world’s largest financial, government and technology organizations, Norse intelligence dramatically improves the performance, catch-rate and return-on-investment of the entire security infrastructure. The Norse Intelligence Network, a globally-distributed distant early warning grid of millions of sensors, honeypots, crawlers, and agents, delivers unmatched visibility into difficult-to-penetrate geographies and darknets, where bad actors operate. Norse processes hundreds of terabytes daily against a 7 petabyte attack history database, and weighs over 1,500 variables to compute real-time risk scores for millions of IP addresses and URLs every day. For more information, visit



Analyst and Media Contact:

Patrick Corman

Corman Communications, Inc.


+1-650-465-5973 (mobile)

[email protected]