Today, California-based SIEM vendor AlienVault announced they will be expanding their Unified Security Management (USM) solution platform to include endpoint detection and response (EDR) capabilities.
In a press release, AlienVault discussed a study by the Ponemon Institute —“The 2017 State of Endpoint Security Risk”— which found that 75% of enterprises have difficulty managing endpoint security risks, especially as new threats evade traditional endpoint prevention; endpoint security solution providers have to reconcile with the fact that no preventative measure is 100% effective. EDR has thus become a critical capability of next-generation endpoint protection platforms, performing a SIEM-like function to supplement their perimeter.
The incorporation of an endpoint security solution into a traditionally SIEM solution indicates the necessity of an extensive enterprise-level cybersecurity solution, as well as how endpoint security and SIEM are evolving to become more similar to each other.
According to a statement by Russ Spitler, Senior Vice President of Product at AlienVault: “Endpoints are critical to a comprehensive security strategy, but many organizations struggle with the cost and complexity of EDR point solutions. Our approach to delivering EDR capabilities as part of a unified solution for threat detection, response and compliance enables companies of all sizes to detect and respond to threats quickly while eliminating the need to add more point solutions to their security stacks.”
AlienVault’s new EDR capabilities have been fully integrated into the USM Anywhere platform. You can read more in their press release, available here.
Latest posts by Ben Canner (see all)
- AI in SIEM: The Benefits for Enterprises of All Sizes - September 19, 2019
- The 10 Key Enterprise SIEM Blogs of 2019 - September 17, 2019
- The 5 Key Lessons for Enterprise SIEM in 2019 - September 12, 2019