Security analytics and orchestration technology integration helps cybersecurity defenders reduce risk and optimize limited resources
NEW YORK — JULY 31, 2018— Bay Dynamics,® a leader in cyber risk analytics, today announced a new technology partnership with CyberSponse®, a leader in Security Orchestration Automation and Response (SOAR). Under this partnership, Bay Dynamics has integrated its Risk Fabric® cyber risk and UEBA platform with the CyberSponse Cyber Security Automation and Incident Response Platform.
This integration of technologies enables today’s resource challenged cybersecurity teams to detect, prioritize and mitigate their most critical incidents and insider threats faster than ever before.
“Organizations today are struggling with a shortage of analysts and an abundance of alerts, which makes this integration vitally important to our mutual customers at the right time,” said Feris Rifai, co-founder and CEO of Bay Dynamics. “Together with CyberSponse, we can help organizations to leverage strong analytics and orchestration for centralized threat analysis, visualization and mitigation to increase cross-enterprise security collaboration, and greatly speed response.”
Using patented UEBA and cyber risk analytics, Risk Fabric detects emerging threats, prioritizes alerts and communicates critical mitigation recommendations to CyberSponse, which triggers appropriate automated actions through orchestration playbooks. This powerful integration provides enterprises and government agencies with:
- Rapid detection of malicious insiders, account takeovers, and perimeter breaches
- Automated response playbooks leveraging user and entity risk and behavior data
- Comprehensive risk identification, prioritization and remediation
“The Bay Dynamics and CyberSponse enterprise integration creates a powerful combination of capabilities for automated triage, investigation, and remediation, leading to rapid response for security-based alerts,” said Larry Johnson, CEO of CyberSponse. “This integration aims to solve the greatest combined problem in security by prioritizing cyber risks based on the impact to the business and force-multiplying personnel resources so they can take appropriate action quickly.”
Leading experts have highlighted integration between UEBA and SOAR platforms as an emerging opportunity for today’s organizations to create more efficient security detection and remediation workflows.
According to Gartner, incident prioritization is listed as one of “five primary domains and use cases that stand-alone UEBA vendors and their users most frequently align…In this use case, the goal is to help an organization prioritize the alerts that are being generated across all the solutions in its technology stack, and offer guidance on which incidents or potential incidents should be prioritized. UEBA tools and techniques are useful to understand what incidents are particularly abnormal or dangerous for a particular organization.”
Gartner recommends to “operationalize UEBA tools by integrating them with a SIEM, security orchestration, automation and response (SOAR) or service desk tool that provides ticketing and workflow capabilities, and allows continued monitoring of developer and privileged user behavior with current tools.” *
*Gartner, Market Guide for User and Entity Behavior Analytics, Avivah Litan, Gorka Sadowski, Toby Bussa, and Tricia Phillips; April 2018.
About Bay Dynamics
Bay Dynamics enables enterprise organizations to identify, prioritize and mitigate their most critical cyber risks based on a strategic array of real-world conditions. Our flagship User and Entity Behavior Analytics (UEBA) and risk analytics software solution, Risk Fabric, integrates and analyzes security data across the full breadth of existing security infrastructure to pinpoint emerging threats and enable rapid remediation. For more information on Bay Dynamics go to www.baydynamics.com or follow us on Twitter at www.twitter.com/BAYDYNAMICS.
CyberSponse is the only patented automated incident response platform that fills the gap between automation-only and human dependent security organizations. The CyberSponse Operations Platform permits the automation of hundreds of security tools within an incident management, case management and analysis console for easy use and rapid deployment. CyberSponse is backed by a team of self-made entrepreneurs looking to disrupt the security industry with true grit, hard work, hustle and last focused execution. For more information visit CyberSponse or follow us on Twitter.