“By embedding ITDR natively into Stellar Cyber, identity signals are automatically correlated with network, endpoint, and cloud telemetry, reducing detection time and eliminating the need to pivot across tools,” Jeff Hill, Stellar Cyber’s Global Senior Director of Service Providers and MSSPs said to MSSP Alert. “This tight integration enhances alert fidelity and supports faster investigations through unified workflows.”
Identity Signals Without the Extra Tools
Stellar Cyber’s ITDR isn’t a separate product. It’s part of the platform. That means customers don’t need to deploy new sensors or switch consoles to see and act on identity-related threats. The system ingests data from tools like Microsoft Entra ID, Okta, and CrowdStrike, then adds real-time identity correlation on top of existing telemetry. This integration enhances visibility without expanding the tech stack.“Stellar Cyber offers plug-and-play integrations with Entra ID, Okta, and CrowdStrike, ingesting identity data with minimal setup,” Hill said. “Layering ITDR on top of existing telemetry adds real-time correlation and risk prioritization without increasing tool sprawl. This means better identity threat coverage and faster insights without burdening security teams.”
“Stellar Cyber’s identity risk scoring continuously evaluates behaviors like anomalous logins, lateral movement, and privilege escalation in real time, prioritizing threats based on context and severity,” said Hill. “This reduces alert fatigue and helps analysts focus on identities most likely to be compromised. The scoring adapts dynamically, ensuring response efforts are targeted and timely.”
New Tools for MSSPs and Co-Managed SOCs
Stellar Cyber’s platform is already used by a third of the top 250 MSSPs, and ITDR gives these partners a way to expand services without added overhead. Because the capability is native to the platform, MSSPs can roll out advanced identity detection and monitoring as part of their core offering, rather than managing yet another product or vendor relationship.“MSSPs are leveraging built-in ITDR to offer advanced identity threat monitoring without deploying separate tools, enabling faster onboarding and unified reporting for their clients,” Hill explained. “This strengthens co-managed SOC offerings with deeper visibility into user behavior and insider threats. It also allows partners to deliver premium services with higher margin and operational efficiency.”





