The CounterTack Sentinel App for QRadar now part of collaborative development to stay ahead of evolving threats
Waltham, Mass. (December 12, 2016) – CounterTack, a leading provider of behaviorally-based endpoint detection and response (EDR) technology for the enterprise, today launched its CounterTack Sentinel App for QRadar, which leverages and integrates with IBM QRadar Security Intelligence to achieve better endpoint visibility. The CounterTack Sentinel App for QRadar delivers EDR capabilities to security teams helping correlate robust endpoint data with any log source to intelligently respond to threats.
QRadar users have flexibility with the Sentinel App to view high-level summary information or detailed behavioral data through multiple dashboards on a single QRadar console, and can easily pivot directly to the Sentinel console. With the CounterTack Sentinel App for QRadar, IBM and CounterTack customers can leverage behaviorally-based detection, analysis and threat prevention capabilities to counter external attacks that infiltrate systems, or for malicious insider-based attacks.
Key benefits include:
- A reduction in incident response time. Security analysts can cut the time-to-result with greater precision in detection and analysis, using endpoint behavioral data, correlated with QRadar intelligence.
- Ease of use. Users can enact endpoint quarantine with a single click from within the QRadar interface, and can easily download Sentinel sensors (agents) and deploy within minutes.
“Enterprise security operations groups rely on correlating multiple sources of intelligence to determine if threats are malicious and how best to respond,” said Doug Cahill, Sr. Analyst, ESG Global. “The ability to download enterprise security apps from IBM’s App Exchange, like Sentinel from CounterTack, gives IBM QRadar users the competitive edge in leveraging critical threat data to respond efficiently and comprehensively to what matters.”
The CounterTack Sentinel App for QRadar leverages IBM QRadar, the company’s security intelligence platform which analyzes data across an organization’s IT infrastructure in real-time to identify potential security threats. Leveraging QRadar’s new open application programming interfaces (API), the CounterTack Sentinel App for QRadar shortens incident response cycles and will deliver unprecedented endpoint threat context to correlate with QRadar source data.
"We’re excited that IBM made our app available on the App Exchange to provide QRadar customers with a new level of endpoint intelligence,” said Neal Creighton, CEO, CounterTack. “Both IBM and CounterTack customers can take advantage of advanced detection, analysis and preventative capabilities through the CounterTack Sentinel App for QRadar.”
The new application is freely available to the security community through IBM Security App Exchange, a marketplace where developers across the industry can share applications based on IBM Security technologies. As threats are evolving faster than ever, collaborative development amongst the security community will help organizations adapt quickly and speed innovation in the fight against cybercrime.
CounterTack is a leading provider of real-time, Big Data endpoint detection and response (EDR) technology for the enterprise. CounterTack provides unprecedented visibility and context around operating system and binary behaviors to detect zero-days attacks, rootkits, targeted malware and advanced persistent threats, enabling customers to improve incident response and advanced threat detection across the enterprise. Over 225 customers leverage CounterTack's next-generation endpoint security solutions globally, across a rapidly growing ecosystem including resellers, MSSPs and professional services partners. For more information, please visit www.countertack.com. Follow CounterTack on Twitter at @CounterTack.
About IBM Security
IBM’s security platform provides the security intelligence to help organizations holistically protect their people, data, applications and infrastructure. IBM offers solutions for identity and access management, security information and event management, database security, application development, risk management, endpoint management, next-generation intrusion protection and more. IBM operates one of the world’s broadest security research and development, and delivery organizations. For more information, please visit www.ibm.com/security, follow @IBMSecurity on Twitter or visit the IBM Security Intelligence blog.