Story image

Exabeam and Okta partner to add context to identity management

23 Aug 2018

Security information and event management company Exabeam and identity solutions provider Okta have partnered to deliver an identity security solution that enables organisations to detect, investigate and respond to credential-based attacks in real time.

By joining the Okta Integration Network, Exabeam benefits from Okta’s identity platform, helping security teams to proactively detect and respond to user-based threats before they become critical.

According to the 2018 Verizon Data Breach Investigations Report, stolen credentials continue to top the list of causes for data breaches.

Many organisations still focus on securing their network perimeter instead of how they secure their extended enterprises.

By adopting a zero trust security model, organisations can better position themselves to respond to credential-based attacks by shifting their focus from protecting legacy single, large perimeters to protecting every user and device within the organisation.

The joint Exabeam and Okta solution will help security teams to monitor and protect enterprises against credential-based threats.

Exabeam Security Intelligence Platform (SIP) ingests user authentication events and rich identity context via API integration.

Exabeam then analyzes that information and adds meaningful context to enable the detection of suspicious login activities.

Security teams can then take immediate action via fully or partially automated playbooks that require suspicious users to verify their identity via step-up authentication, or that enforce containment actions, such as disabling the user’s account, reducing the user’s access or denying authentication attempts.

“Whether it’s a malicious or compromised insider, credential-based threats are tricky to identify,” says Exabeam worldwide channels vice president Ted Plumis.

“We are excited to partner with Okta to deliver a security solution that will provide customers with visibility and additional context—empowering analysts to identify and remediate compromised user accounts in real time.”

“In today’s threat environment, security is at the forefront of every organisation’s mind, no matter what industry they are in, and the more intelligence that is available to them, the better decisions they can make to keep their users and data safe,” says Okta integrations and strategic partnerships vice president Chuck Fontana.

“We’re excited to be working hand-in-hand with Exabeam to unite Okta's identity insights and user remediation with Exabeam's user and entity behaviour analytics capabilities to help close the security loop against sophisticated threats.”

The joint solution provides a complete view of security events across an organisation, contextualised with user identity information, in a unified security management system that detects suspicious from normal behaviour, surfaces real alerts instantly with clarifying contextual data, and initiates automated remediation measures where appropriate.

Privacy: The real cost of “free” mobile apps
Sales of location targeted advertising, based on location data provided by apps, is set to reach $30 billion by 2020.
Myth-busting assumptions about identity governance - SailPoint
The identity governance space has evolved and matured over the past 10 years, changing with the world around it.
Forrester names Crowdstrike leader in incident response
The report provides an in-depth evaluation of the top 15 IR service providers across 11 criteria.
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Ensign and IronNet partner to create cyber analytics capabilities
The Singapore-based joint venture will form a Cyber Analytics Center for Excellence focused on securing regional enterprises from sophisticated cyber threats.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.