Story image

Exabeam and Okta partner to add context to identity management

23 Aug 18

Security information and event management company Exabeam and identity solutions provider Okta have partnered to deliver an identity security solution that enables organisations to detect, investigate and respond to credential-based attacks in real time.

By joining the Okta Integration Network, Exabeam benefits from Okta’s identity platform, helping security teams to proactively detect and respond to user-based threats before they become critical.

According to the 2018 Verizon Data Breach Investigations Report, stolen credentials continue to top the list of causes for data breaches.

Many organisations still focus on securing their network perimeter instead of how they secure their extended enterprises.

By adopting a zero trust security model, organisations can better position themselves to respond to credential-based attacks by shifting their focus from protecting legacy single, large perimeters to protecting every user and device within the organisation.

The joint Exabeam and Okta solution will help security teams to monitor and protect enterprises against credential-based threats.

Exabeam Security Intelligence Platform (SIP) ingests user authentication events and rich identity context via API integration.

Exabeam then analyzes that information and adds meaningful context to enable the detection of suspicious login activities.

Security teams can then take immediate action via fully or partially automated playbooks that require suspicious users to verify their identity via step-up authentication, or that enforce containment actions, such as disabling the user’s account, reducing the user’s access or denying authentication attempts.

“Whether it’s a malicious or compromised insider, credential-based threats are tricky to identify,” says Exabeam worldwide channels vice president Ted Plumis.

“We are excited to partner with Okta to deliver a security solution that will provide customers with visibility and additional context—empowering analysts to identify and remediate compromised user accounts in real time.”

“In today’s threat environment, security is at the forefront of every organisation’s mind, no matter what industry they are in, and the more intelligence that is available to them, the better decisions they can make to keep their users and data safe,” says Okta integrations and strategic partnerships vice president Chuck Fontana.

“We’re excited to be working hand-in-hand with Exabeam to unite Okta's identity insights and user remediation with Exabeam's user and entity behaviour analytics capabilities to help close the security loop against sophisticated threats.”

The joint solution provides a complete view of security events across an organisation, contextualised with user identity information, in a unified security management system that detects suspicious from normal behaviour, surfaces real alerts instantly with clarifying contextual data, and initiates automated remediation measures where appropriate.

How to stay safe when shopping online
Online shopping is a great way to avoid the crowds – but there are risks.
Dell EMC embeds security in latest servers
Dell EMC's 14th generation of PowerEdge servers has comprehensive management tools to provide security across hardware and firmware.
Why data backups should be a part of daily operations
"Disaster recovery needs to address complete system failure and provide a set of security policies to govern disaster incidents."
Businesses focusing on threats from within - survey
Over 50% of respondents reported that 100 days of dwell time or more was representative of their organisation.
GCSB welcomes Inspector-General's report on intelligence warrants
Intelligence warrants can include surveillance, private communications interception, searches of physical places and things, and the seizure of communications, information and things.
Corelight and Exabeam partner to improve network monitoring
The combination of lateral movement and siloed usage of point security products leaves many security teams vulnerable to compromise.
SailPoint releases first identity annual report
SailPoint’s research found that many organisations are lacking maturity in their governance processes over identities.
Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."