AlienVault, a unified security management (USM) and threat intelligence platform provider, has integrated endpoint detection and response (EDR) capabilities into its USM Anywhere threat detection and response offering. USM Anywhere's EDR capabilities are now available to all customers, and no subscription upgrades or updates are required.
With the addition of EDR capabilities, organizations can use USM Anywhere to automate threat detection and response across endpoints and networks in cloud and on-premises environments, according to a prepared statement.
A Closer Look at USM Anywhere
USM Anywhere provides threat detection, incident response and compliance management across cloud, on-premises and hybrid environments, AlienVault stated.
In addition to EDR, USM Anywhere combines the following security capabilities into a single platform:
- Asset discovery.
- Behavioral monitoring.
- Intrusion detection.
- Log management.
- Security information and event management (SIEM).
- Threat intelligence.
- Vulnerability assessment.
USM Anywhere also enables organizations to deploy sensors in cloud and on-premises environments and centralize data collection, security analysis and threat detection from the AlienVault Secure Cloud, the company stated. That way, organizations can use USM Anywhere to eliminate security blind spots, mitigate unmanaged shadow IT activities and migrate workloads and services from a data center to a cloud environment.
AT&T Acquires AlienVault
AT&T, a Top 100 MSSP for 2017, this month announced plans to acquire AlienVault for an undisclosed sum. The company will integrate AlienVault's threat detection and response offerings into its cybersecurity services portfolio and invest in and build on USM Anywhere and the Open Threat Exchange (OTX) threat intelligence community.
The AlienVault acquisition enables AT&T to expand its security solutions portfolio to millions of small and medium-sized businesses, according to the companies. Also, the acquisition could help AT&T extend its reach in the managed security services market.
How Does AlienVault Work with MSSPs?
USM Anywhere enables MSSPs to provide their customers with regulatory compliance and threat detection and response support, AlienVault noted. The platform can be integrated into a variety of managed security services, including:
- Compliance management.
- Log management.
- Managed detection and response (MDR).
AlienVault added over 200 MSSP partners in 2017, according to the company. Furthermore, more than 500 AlienVault MSSP partners currently leverage USM Anywhere.