Advanced threat protection (ATP) is a cyber security strategy designed to identify threats to a computer system before they can compromise the system. As cyber attacks have become more sophisticated, traditional defenses like antivirus and firewalls are insufficient.
The objectives of an ATP system are early detection, appropriate protection and quick, effective response. To accomplish these goals the system needs real time perceptibility, context and data awareness. It requires security specialists as well as technical support.
Approaches in ATP include
- Leveraging threat intelligence.
- Analyzing user and attacker behavior through technology and human effort.
- Setting intruder traps for potential attackers.
- Conducting threat hunts.
By searching for unknown as well as known threats and responding with speed, ATP can reduce the chance of a major data breach.