Exabeam and SentinelOne Partner to Detect and Stop Advanced ThreatsDecember 19, 2018
Joint customers will be able to ingest threat and incident data directly from SentinelOne into the Exabeam Security Management Platform to baseline normal behavior. Through this, customers can combine that data with data from other IT and security solutions to provide security analysts with greater visibility against advanced attacks.
Additionally, Exabeam can trigger automated incident response for compromised endpoints using the Sentinel One API. By gathering all related events into Exabeam Smart Timelines, analysts can automatically reconstruct the events underlying security incidents. The Exabeam Security Management Platform automatically identifies risky, anomalous device activity that may be indicative of a security incident or compromise. Customers can then automatically respond to the incident directly from the Exabeam UI: changing user passwords, sending email verifications, restarting and scanning hosts, getting device and/or user information, and enabling or disabling two-factor authentication. They can also generate and list reports, list processes, get files and list applications on a host.
“The integration with SentinelOne feeds the Exabeam Security Management Platform with rich data that makes it easier for our customers to understand the problem they’re facing and immediately mitigate the potential exposure,” said Ted Plumis, Vice President of Worldwide Channels, Exabeam. “When threats are detected, Exabeam’s security orchestration and response automation solution helps users take corrective actions via response playbooks.”
The joint solution will be available through mutual channel partners of SentinelOne and Exabeam, like Optiv and Exclusive Networks.
“As a leading security solutions integrator, Optiv combines proprietary services with transformative and integrated technologies. Bringing EPP, EDR and efficient SIEM together into a streamlined workflow, both SentinelOne and Exabeam are valuable tools for our service leaders and our clients in recognizing fast time-to-value,” said Todd Weber, Vice President, Partner Strategy and Research, Optiv. “We look forward to working with both companies as we continue to help global organizations rationalize and optimize their security programs.”
“The threat landscape has evolved, and so in turn has the market,” said Luk Schoonaert, Director of Technology, Exclusive Networks. “A true value to a partner and an end customer comes from delivering an integrated security solution that enables them to detect and respond to potential threats in their IT environments in a simplified and an efficient way. We’ve been working closely with both Exabeam and SentinelOne and look forward to engaging with both teams to ensure their solution is readily available to our partners and customers in our diverse portfolio.”