Story image

Exabeam and Okta partner to add context to identity management

23 Aug 2018

Security information and event management company Exabeam and identity solutions provider Okta have partnered to deliver an identity security solution that enables organisations to detect, investigate and respond to credential-based attacks in real time.

By joining the Okta Integration Network, Exabeam benefits from Okta’s identity platform, helping security teams to proactively detect and respond to user-based threats before they become critical.

According to the 2018 Verizon Data Breach Investigations Report, stolen credentials continue to top the list of causes for data breaches.

Many organisations still focus on securing their network perimeter instead of how they secure their extended enterprises.

By adopting a zero trust security model, organisations can better position themselves to respond to credential-based attacks by shifting their focus from protecting legacy single, large perimeters to protecting every user and device within the organisation.

The joint Exabeam and Okta solution will help security teams to monitor and protect enterprises against credential-based threats.

Exabeam Security Intelligence Platform (SIP) ingests user authentication events and rich identity context via API integration.

Exabeam then analyzes that information and adds meaningful context to enable the detection of suspicious login activities.

Security teams can then take immediate action via fully or partially automated playbooks that require suspicious users to verify their identity via step-up authentication, or that enforce containment actions, such as disabling the user’s account, reducing the user’s access or denying authentication attempts.

“Whether it’s a malicious or compromised insider, credential-based threats are tricky to identify,” says Exabeam worldwide channels vice president Ted Plumis.

“We are excited to partner with Okta to deliver a security solution that will provide customers with visibility and additional context—empowering analysts to identify and remediate compromised user accounts in real time.”

“In today’s threat environment, security is at the forefront of every organisation’s mind, no matter what industry they are in, and the more intelligence that is available to them, the better decisions they can make to keep their users and data safe,” says Okta integrations and strategic partnerships vice president Chuck Fontana.

“We’re excited to be working hand-in-hand with Exabeam to unite Okta's identity insights and user remediation with Exabeam's user and entity behaviour analytics capabilities to help close the security loop against sophisticated threats.”

The joint solution provides a complete view of security events across an organisation, contextualised with user identity information, in a unified security management system that detects suspicious from normal behaviour, surfaces real alerts instantly with clarifying contextual data, and initiates automated remediation measures where appropriate.

Secureworks Magic Quadrant Leader for Security Services
This is the 11th time Secureworks has been positioned as a Leader in the Gartner Magic Quadrant for Managed Security Services, Worldwide.
Google puts Huawei on the Android naughty list
Google has apparently suspended Huawei’s licence to use the full Android platform, according to media reports.
Using data science to improve threat prevention
With a large amount of good quality data and strong algorithms, companies can develop highly effective protective measures.
General staff don’t get tech jargon - expert says time to ditch it
There's a serious gap between IT pros and general staff, and this expert says it's on the people in IT to bridge it.
ZombieLoad: Another batch of flaws affect Intel chips
“This flaw can be weaponised in highly targeted attacks that would normally require system-wide privileges or a complete subversion of the operating system."
Forget endpoints—it’s time to secure people instead
Security used to be much simpler: employees would log in to their PC at the beginning of the working day and log off at the end. That PC wasn’t going anywhere, as it was way too heavy to lug around.
DimData: Fear finally setting in amongst vulnerable orgs
New data ranking the ‘cybermaturity’ of organisations reveals the most commonly targeted sectors are also the most prepared to deal with the ever-evolving threat landscape.
IXUP goes "post-quantum" with security tech upgrade
The secure analytics company has also partnered with Deloitte as a reseller, and launched a SaaS offering on Microsoft Azure.