Content, Channel partners, Security Program Controls/Technologies, Endpoint/Device Security

AlienVault Unified Security Management Gains EDR Capabilities


AlienVault, a unified security management (USM) and threat intelligence platform provider, has integrated endpoint detection and response (EDR) capabilities into its USM Anywhere threat detection and response offering. USM Anywhere's EDR capabilities are now available to all customers, and no subscription upgrades or updates are required.

With the addition of EDR capabilities, organizations can use USM Anywhere to automate threat detection and response across endpoints and networks in cloud and on-premises environments, according to a prepared statement.

A Closer Look at USM Anywhere

USM Anywhere provides threat detection, incident response and compliance management across cloud, on-premises and hybrid environments, AlienVault stated.

In addition to EDR, USM Anywhere combines the following security capabilities into a single platform:

  • Asset discovery.
  • Behavioral monitoring.
  • Intrusion detection.
  • Log management.
  • Security information and event management (SIEM).
  • Threat intelligence.
  • Vulnerability assessment.

USM Anywhere also enables organizations to deploy sensors in cloud and on-premises environments and centralize data collection, security analysis and threat detection from the AlienVault Secure Cloud, the company stated. That way, organizations can use USM Anywhere to eliminate security blind spots, mitigate unmanaged shadow IT activities and migrate workloads and services from a data center to a cloud environment.

AT&T Acquires AlienVault

AT&T, a Top 100 MSSP for 2017, this month announced plans to acquire AlienVault for an undisclosed sum. The company will integrate AlienVault's threat detection and response offerings into its cybersecurity services portfolio and invest in and build on USM Anywhere and the Open Threat Exchange (OTX) threat intelligence community.

The AlienVault acquisition enables AT&T to expand its security solutions portfolio to millions of small and medium-sized businesses, according to the companies. Also, the acquisition could help AT&T extend its reach in the managed security services market.

How Does AlienVault Work with MSSPs?

USM Anywhere enables MSSPs to provide their customers with regulatory compliance and threat detection and response support, AlienVault noted. The platform can be integrated into a variety of managed security services, including:

  • Compliance management.
  • Log management.
  • Managed detection and response (MDR).
  • SIEM-as-a-service.

AlienVault added over 200 MSSP partners in 2017, according to the company. Furthermore, more than 500 AlienVault MSSP partners currently leverage USM Anywhere.

Dan Kobialka

Dan Kobialka is senior contributing editor, MSSP Alert and ChannelE2E. He covers IT security, IT service provider business strategies and partner programs. Dan holds a M.A. in Print and Multimedia Journalism from Emerson College and a B.A. in English from Bridgewater State University. In his free time, Dan enjoys jogging, traveling, playing sports, touring breweries and watching football.