Cyber Security Industry News

TMCNet:  Attivo Networks Joins IBM Security App Exchange Community

[July 30, 2020]

Attivo Networks Joins IBM Security App Exchange Community

Today, Attivo Networks®, an award-winning leader in deception for cybersecurity threat detection, announced an integration with IBM (News - Alert) Security Resilient, the company's security orchestration, automation and response (SOAR) platform. This integration enables organizations to respond rapidly to detected threats by reducing false-positive alerts and excessive manual intervention. The Attivo Networks ThreatDefend® BOTsink® solution integration for Resilient configures quickly to give organizations the ability to combine early and accurate detection with automated security orchestration.

The BOTsink solution is available to the security community through IBM Security App Exchange, a marketplace where developers across the industry can share applications based on IBM Security technologies. As threats are evolving faster than ever, collaborative development amongst the security industry helps organizations adapt quickly and speed innovation in the fight against cybercrime.

Attivo BOTSink solution integrates with Resilient, which accelerates incident response with its orchestration and automation capabilities, to investigate and mitigate threats. Leveraging Resilient's open application programming interfaces (APIs), Attivo BOTSink for Resilient allows Attivo Networks and Resilient customers to automate security orchestration, reduce triage times, and accelerate incident response. Organizations gain accurate detection early in the attack cycle, which can trigger incident response playbooks and leverage automation, for faster response. It also provides forensic evidence collection and attack activity recordings that organizations can leverage for threat intelligence development Resilient can dynamically deploy decoys from the BOTsink as part of an orchestration playbook to add on-demand deception coverage in response to detected activity.


"Once attackers bypass existing prevention mechanisms, they have the freedom to move around and can remain undetected for extended periods. Organizations need solutions that excel at finding in-network threats without relying on known signatures or attack patterns," said Tushar Kothari, chief executive officer of Attivo Networks. "The accuracy of this joint solution, coupled with its accelerated response, gives organizations the ability to deal with threats quickly to minimize the time attackers have to remain undetected within the network."

The Attivo BOTsink integration for Resilient is available on the IBM Security App Exchange ecosystem. To learn more, please visit the Attivo Networks solution page or view the integration partner brief. Register here to attend the webinar entitled, "Be Resilient with IBM and Attivo Networks," August 19th at 11:00 am Pacific time.

About Attivo Networks
Attivo Networks®, the leader in cyber deception and lateral movement attack detection, delivers a superior defense for revealing and preventing unauthorized insider and external threat activity. The customer-proven Attivo ThreatDefend® Platform provides a scalable solution for derailing attackers and reducing the attack surface within user networks, data centers, clouds, remote worksites, and specialized attack surfaces. The portfolio defends at the endpoint, Active Directory and throughout the network with ground-breaking innovations for preventing and misdirecting lateral attack activity. Forensics, automated attack analysis, and third-party native integrations streamline incident response. The company has won over 130 awards for its technology innovation and leadership. For more information, visit www.attivonetworks.com.


[ Cloud Security's Homepage ]

Free Subscription