Exabeam and SentinelOne Partner to Detect and Stop Advanced Threats

December 19, 2018 Off By Hoofer
Exabeam and SentinelOne today announced a strategic partnership and the integration of the Exabeam Security Management Platform and SentinelOne automous endpoint protection console. Customers will be able to rapidly detect and automatically respond to threats across all endpoints with the new joint solution. 

Joint customers will be able to ingest threat and incident data directly from SentinelOne into the Exabeam Security Management Platform to baseline normal behavior. Through this, customers can combine that data with data from other IT and security solutions to provide security analysts with greater visibility against advanced attacks.

Additionally, Exabeam can trigger automated incident response for compromised endpoints using the Sentinel One API. By gathering all related events into Exabeam Smart Timelines, analysts can automatically reconstruct the events underlying security incidents. The Exabeam Security Management Platform automatically identifies risky, anomalous device activity that may be indicative of a security incident or compromise. Customers can then automatically respond to the incident directly from the Exabeam UI: changing user passwords, sending email verifications, restarting and scanning hosts, getting device and/or user information, and enabling or disabling two-factor authentication. They can also generate and list reports, list processes, get files and list applications on a host.


“Strategic partnerships of this nature represent the future of the security market – combining autonomous endpoint protection with powerful SIEM capabilities to speed incident response, while helping customers contextualize how they’re mitigating risk,” said Daniel Bernard, VP Business & Corporate Development, SentinelOne. “This integration will enable customers to see the true story of what’s happening across their network and endpoints, while knowing that they’re fully protected against today’s most devastating threats.”

“The integration with SentinelOne feeds the Exabeam Security Management Platform with rich data that makes it easier for our customers to understand the problem they’re facing and immediately mitigate the potential exposure,” said Ted Plumis, Vice President of Worldwide Channels, Exabeam. “When threats are detected, Exabeam’s security orchestration and response automation solution helps users take corrective actions via response playbooks.”

The joint solution will be available through mutual channel partners of SentinelOne and Exabeam, like Optiv and Exclusive Networks.

“As a leading security solutions integrator, Optiv combines proprietary services with transformative and integrated technologies. Bringing EPP, EDR and efficient SIEM together into a streamlined workflow, both SentinelOne and Exabeam are valuable tools for our service leaders and our clients in recognizing fast time-to-value,” said Todd Weber, Vice President, Partner Strategy and Research, Optiv. “We look forward to working with both companies as we continue to help global organizations rationalize and optimize their security programs.”

“The threat landscape has evolved, and so in turn has the market,” said Luk Schoonaert, Director of Technology, Exclusive Networks. “A true value to a partner and an end customer comes from delivering an integrated security solution that enables them to detect and respond to potential threats in their IT environments in a simplified and an efficient way. We’ve been working closely with both Exabeam and SentinelOne and look forward to engaging with both teams to ensure their solution is readily available to our partners and customers in our diverse portfolio.”