Security Operations, Content, Security Program Controls/Technologies, Channel partner programs, Threat Intelligence, Threat Management

Next DLP Strikes Integration Deal with Splunk, Strengthens SIEM Streaming Service

communication equipment room with lighting in data center

Next DLP, formerly Qush Security, a data loss prevention (DLP) specialist, has struck a new integration deal with data analytics provider Splunk for Next’s Reveal platform.

The cloud-native Reveal, combined with Splunk’s data analytics technology, aims to strengthen visibility, protection, and leverage customers’ investment in existing security solutions to improve incident response effectiveness, the partners said. Reveal helps organizations discover risks, educate employees, enforce policies, meet audit reporting requirements and ultimately stop data loss.

In addition, Reveal’s new security information and event management (SIEM) streaming service provides a configuration process that enables organizations to reduce response times through the automated ingestion of detections into their existing SIEM tools and workflows.

Gaining Visibility Into At-Risk Data

As part of this capability, the Next DLP Reveal Technology add-on is now available in Splunkbase. Insider risk and DLP activity observed by Reveal can be pulled into Splunk and correlated with other cybersecurity data sets for more effective incident response and investigation.

Explaining how the Splunk deal helps customers gain visibility into how their data is at risk, Next CEO Connie Stack said:

“Security solution complexity and a lack of resources often forces enterprises to selectively deploy, leaving gaps. With our new Splunk integration, joint customers gain visibility of how, where and when their sensitive data is being accessed and put at risk, whether intentionally or not; and now they can choose to manage incidents in Splunk, if that’s their preference.”

Ana Garcia, a Next product manager, said the new streaming service and Splunk integration enables security teams to streamline their processes:

“With our new streaming service and Splunk integration we are providing security teams with a much-needed platform that enables them to consolidate and simplify their security processes. Next’s technology ecosystem approach benefits every customer who can now seamlessly and quickly uncover risks to prevent a breach and improve visibility and productivity.”

Next is positioning itself favorably against legacy data loss protection solutions. As Tom Cope, Next chief security officer, explained:

“Part of the challenge with legacy DLP is that its core tech was built before the emergence of cloud computing; before collaboration engines like Zoom and Slack came to market; and well before the COVID-19 pandemic drove knowledge workers to a work-from-anywhere model that is here to stay. Put plainly, legacy DLP can’t meet the needs of the modern organization and does not defend against today’s threats.”

Next's Focus on the North America Market

In November 2022, Next expanded into the North America market with an office in Boston, Massachusetts and an intent to double the size of the team to bolster customer support, sales and partnerships. In conjunction with the expansion, Next named Stack as the company’s new chief executive.

Stack said that North America is a “critical region” for Next in that it is fertile ground for the company's growth strategy:

“We see thousands of companies who need to fulfill data security, compliance and regulatory needs that have not been adequately served by legacy DLP solutions.”

In January of this year, Next said it had achieved a 200% increase in revenue in 2022.

D. Howard Kass

D. Howard Kass is a contributing editor to MSSP Alert. He brings a career in journalism and market research to the role. He has served as CRN News Editor, Dataquest Channel Analyst, and West Coast Senior Contributing Editor at Channelnomics. As the CEO of The Viewpoint Group, he led groundbreaking market research.