Threat Management, Identity

Stellar Cyber Embeds ITDR Into Platform, MSSPs Gain Identity Edge

Credential misuse remains one of the most common and effective techniques used by attackers to infiltrate systems, move laterally, and exfiltrate data. The traditional approach that deploys standalone identity tools often results in more dashboards, more alerts, and longer response times. Stellar Cyber is taking a different path by embedding Identity Threat Detection and Response (ITDR) directly into its SecOps platform.

This new ITDR capability allows security teams to detect, investigate, and respond to identity-based threats without leaving the platform they already use. Instead of adding complexity, Stellar Cyber brings identity into the same workflows analysts rely on for endpoint, network, and cloud investigations, reducing noise and response time in the process.

“By embedding ITDR natively into Stellar Cyber, identity signals are automatically correlated with network, endpoint, and cloud telemetry, reducing detection time and eliminating the need to pivot across tools,” Jeff Hill, Stellar Cyber’s Global Senior Director of Service Providers and MSSPs said to MSSP Alert. “This tight integration enhances alert fidelity and supports faster investigations through unified workflows.”

Identity Signals Without the Extra Tools

Stellar Cyber’s ITDR isn’t a separate product. It’s part of the platform. That means customers don’t need to deploy new sensors or switch consoles to see and act on identity-related threats. The system ingests data from tools like Microsoft Entra ID, Okta, and CrowdStrike, then adds real-time identity correlation on top of existing telemetry. This integration enhances visibility without expanding the tech stack.

“Stellar Cyber offers plug-and-play integrations with Entra ID, Okta, and CrowdStrike, ingesting identity data with minimal setup,” Hill said. “Layering ITDR on top of existing telemetry adds real-time correlation and risk prioritization without increasing tool sprawl. This means better identity threat coverage and faster insights without burdening security teams.”

The platform also applies AI-driven identity risk scoring, which dynamically evaluates behaviors—like impossible travel, anomalous access attempts, and privilege escalation—and surfaces the highest-risk identities. This helps teams filter out false positives and stay focused on threats that matter.

“Stellar Cyber’s identity risk scoring continuously evaluates behaviors like anomalous logins, lateral movement, and privilege escalation in real time, prioritizing threats based on context and severity,” said Hill. “This reduces alert fatigue and helps analysts focus on identities most likely to be compromised. The scoring adapts dynamically, ensuring response efforts are targeted and timely.”

New Tools for MSSPs and Co-Managed SOCs

Stellar Cyber’s platform is already used by a third of the top 250 MSSPs, and ITDR gives these partners a way to expand services without added overhead. Because the capability is native to the platform, MSSPs can roll out advanced identity detection and monitoring as part of their core offering, rather than managing yet another product or vendor relationship.

“MSSPs are leveraging built-in ITDR to offer advanced identity threat monitoring without deploying separate tools, enabling faster onboarding and unified reporting for their clients,” Hill explained. “This strengthens co-managed SOC offerings with deeper visibility into user behavior and insider threats. It also allows partners to deliver premium services with higher margin and operational efficiency.”

By embedding ITDR directly into its unified SecOps platform, Stellar Cyber is giving security teams and MSSPs the ability to respond to identity-driven attacks faster, with more context and less complexity. As credential-based threats continue to grow in frequency and sophistication, that kind of integration isn’t just helpful, it’s becoming essential.

Suparna Chawla Bhasin

Suparna is the Senior Managing Editor for CyberRisk Alliance’s Channel Brands, including MSSP Alert and ChannelE2E. She manages content development, sharpens editorial workflows, and ensures storytelling is tightly aligned with audience needs. With a background in technology, media, and education, she combines strategic insight with creative execution.

You can skip this ad in 5 seconds