The companies have together designed a new, integrated offering, which correlates Carbon Black’s endpoint activity data with public Common Vulnerabilities and Exposures (CVE) databases to deliver a prioritized list of actively exploited vulnerabilities tailored to each organization. Carbon Black claims that the offering is designed to manage active attack remediation where the new collaboration takes the guesswork out from endpoint vulnerabilities that security professionals need to prioritize.
How will the partnership help?
According to the partnership and as mentioned before IBM Big Fix and Carbon Black will help cybersecurity professionals to identify and patch the endpoint exploits most threatening to their particular organizations. This process increases enterprise-wide visibility and speeds response time. The integration is further bolstered by IBM QRadar, which, together with BigFix, provides threat prioritization of vulnerabilities at the network level.
With Carbon Black endpoint data funneled into IBM BigFix, security professionals can act quickly and decisively to patch devices enterprise-wide within seconds. Together, both the companies claim to have created the only solution on the market that combines continuous and centrally recorded endpoint data with the ability to enforce policies on devices enterprise-wide to solve the pervasive patch-management problem security teams are facing.
James Brennan, Director, Strategy and Offering Management, IBM Security said, “IBM BigFix delivers the industry’s best ability to detect non-compliant and vulnerable endpoints. Beyond detection, IBM BigFix also offers a complete vulnerability remediation solution as part of its patch compliance capabilities. The expanded partnership with Carbon Black leverages their leading ‘Patterns of Attack’ technology, which detects suspicious behaviors on the endpoint. We’re now bringing that data together, with a patch/compliance view, giving complete visibility into customers’ endpoints.”
IBM will offer the integrated BigFix and Carbon Black solution to its customers, enabling security professionals to:
- Find it: See precisely which endpoints are being actively exploited enterprise-wide and filter by a specific vulnerability.
- Fix it: Understand which patches will have the biggest impact across the organization and then patch, within seconds, the most actively exploited vulnerabilities.
- Secure it: Stop an attack dead in its tracks, and prevent future attacks of a similar nature.
Patrick Morley, CEO, Carbon Black said, “From top to bottom, security is in our company’s DNA. Our products were created by security experts who intimately know how difficult managing alerts can be. This new, ground-breaking offering from Carbon Black and IBM leapfrogs other management solutions on the market, which lack a proactive, continuous approach to capturing critical endpoint data.”
Both the companies have also inked new global agreements which will allow customers to purchase Carbon Black solutions directly from IBM, enabling IBM customers to take advantage of the new integrated BigFix and Cb Response solution.
