Bit9® + Carbon Black® the leader in Next-Generation Endpoint Security (NGES), and Blue Coat Systems, Inc., a market leader in enterprise security, today announced Bit9 + Carbon Black has integrated the Carbon Black endpoint detection and response solution with Blue Coat’s next-generation malware analysis and security analytics network solutions. Bit9 + Carbon Black is a founding member of the Blue Coat Alliance Ecosystem of Endpoint Detection and Response (EDR) partner program, announced earlier this year.
The integration provides Carbon Black and Blue Coat customers with several powerful new use cases:
Remote file analysis via Blue Coat’s Malware Analysis Appliance: This integration enables Carbon Black to automatically send unknown files to Blue Coat’s Malware Analysis Appliance for detonation and analysis. Based on the results, file scores and alerts are immediately sent to Carbon Black, where further investigation can take place. This extends Blue Coat Malware Analysis capabilities to Carbon Black to protect devices from activities that would traditionally evade network security protections, such as off-network downloads or USB devices.
Empowered Incident Response via Blue Coat Security Analytics: When investigating an attack using Blue Coat Security Analytics, this integration provides a quick pivot integration into Carbon Black. This allows administrators to quickly see if a file executed on an endpoint and if so, take necessary incident response actions such as endpoint isolation, live response, or attack banning.
“Uniting network security and endpoint detection and response is crucial,” said Peter Doggart, vice president, business development, Blue Coat. “By integrating our network analysis and analytics platforms with Carbon Black, the leader in endpoint detection and response, Blue Coat is providing customers with a truly comprehensive end-to-end solution—from complete network to endpoint visibility and detection, to swift and effective incident response and remediation.”
Tom Barsi, Bit9 + Carbon Black’s vice president of business development, said, “Thousands of companies depend upon Blue Coat technology to defend their networks. This integration will enable organizations to extend those protections down to the endpoint with Carbon Black. By uniting endpoint detection and response, and network detonation and analytics, organizations can leverage both endpoint and network investments to achieve better security.”
This integration is now available free of charge to joint customers using Carbon Black version 5.0 and above and Blue Coat Malware Analysis Appliance.
The integration module can be downloaded here.
See It in Action: For those interested in seeing the integration in action, a demo of the integrations is available for viewing here.
Blue Coat proxy appliances provide visibility and control of Web communications to address today’s new business risks-such as inappropriate Web surfing, viruses brought in via back door channels such as instant messaging and Web-based email, and network resource abuse due to spyware, peer-to-peer (P2P) file sharing and ... Read more »