Unified Access Security leader Duo Security and Exabeam, the next-gen Security Information and Event Management (SIEM) company, have partnered to enhance and accelerate organizations’ threat protection with data-rich automated monitoring and incident response. The integrated solution, which combines Duo’s authentication and device logs with Exabeam’s Security Management Platform, helps free up time and resources for overstretched security teams by providing higher accuracy alerts, reducing time to detection and orchestrating automated response in case of anomalous behavior.
Cloud applications, remote workforce and bring your own device (BYOD) policies have made the traditional security perimeter increasingly porous and susceptible to attacks via stolen user credentials. Compromised credentials are the top cause of data breaches, according to the 2018 Verizon Data Breach Investigations Report.
The integration of Duo's zero-trust platform with Exabeam's Smart Timelines allows organizations to track user behavior and initiate automated responses to reduce credential-based threats, including blocking or denying suspicious user accounts and invoking two-factor authentication to verify users' identities.
“Zero-trust security is not only about identity authentication at the initial login, but also maintaining trust throughout the user session with continuous monitoring and verification,” said Ash Devata, Duo Security Head of Product. “Once trust is broken, it’s critical to have the ability to respond quickly. Our integrated solution with Exabeam is about enabling every security team, regardless of size, to access these capabilities, furthering our mission to democratize security.”
The uphill battle security teams face is illustrated by Cisco’s 2018 Annual Cybersecurity Report, which found that over a two-year period, Cisco cloud-based endpoint security products identified a fourfold increase in the total volume of security events – both benign and malicious.
“The deluge of alerts one organization can get in a day can overwhelm even the most seasoned and well-resourced security team,” said Ted Plumis, VP of Worldwide Channels at Exabeam. “Our integration with Duo enables us to deliver a streamlined, orchestrated security solution for customers who need to identify suspicious activity to quickly remediate threats in their environment.”
“This integrated solution will be of great benefit to our customers by increasing the speed, certainty, and breadth in which they can detect and respond to potential threats in their IT environments,” said Ray Tam, Trace3 Vice President of Security. “We’ve been working closely with both Duo and Exabeam already and we look forward to engaging with both teams to ensure their solution is readily available to the organizations in our diverse customer portfolio.”
Duo and Exabeam both have ties to Cisco. Duo was recently acquired by Cisco for $2.35 billion, and Exabeam is a Cisco Investments portfolio company.