Expanded Carbon Black and IBM Partnership Delivers New Technology to Identify and Patch Most Critical Endpoint Vulnerabilities in Seconds
Oct 04, 2016
IBM Security to Resell Carbon Black
WALTHAM, MA – October 4, 2016 — Carbon Black, the leader in next-generation endpoint security, today announced an expansion of its partnership with IBM Security [NYSE: IBM]. The companies have collaborated to deliver a unique technology, which empowers customers to patch, within seconds, the most pervasive and critical vulnerabilities affecting an enterprise’s security. IBM will also deliver Carbon Black directly to customers as part of the expanded relationship.
According to Gartner’s September 2016 Report, It’s Time to Align Your Vulnerability Management Priorities With the Biggest Threats, “organizations are struggling to figure out the delta between ‘what can I fix’ and ‘what will make the biggest difference, with the pragmatic reality of the time and resources that I actually have,’” making vulnerability management one of the biggest problems plaguing the security industry. A lack of visibility into which endpoints are being actively exploited across the enterprise often leads to non-directed, broad-based patching of endpoints. This approach can leave endpoints vulnerable to the most pressing attack vectors.
IBM and Carbon Black have designed a new, integrated offering, which correlates Carbon Black’s endpoint activity data with public Common Vulnerabilities and Exposures (CVE) databases to deliver a prioritized list of actively exploited vulnerabilities tailored to each organization. Designed to manage active attack remediation, the new collaboration takes the guesswork out of which endpoint vulnerabilities security professionals need to prioritize.
The combination of IBM Big Fix and Carbon Black empowers security professionals to, within seconds, identify and patch the endpoint exploits most threatening to their particular organizations. This process increases enterprise-wide visibility and speeds response time. The integration is further bolstered by IBM QRadar, which, together with BigFix, provides threat prioritization of vulnerabilities at the network level. The most pressing alerts can now be escalated for security professionals to immediately remediate, delivering the most comprehensive threat-based patching and remediation solution.
“From top to bottom, security is in our company’s DNA,” said Carbon Black CEO, Patrick Morley. “Our products were created by security experts who intimately know how difficult managing alerts can be. This new, ground-breaking offering from Carbon Black and IBM leapfrogs other management solutions on the market, which lack a proactive, continuous approach to capturing critical endpoint data.”
As customers seek to focus their security-tool portfolio, IBM will offer the integrated BigFix and Carbon Black solution to its customers, enabling security professionals to:
- Find it: See precisely which endpoints are being actively exploited enterprise-wide and filter by a specific vulnerability.
- Fix it: Understand which patches will have the biggest impact across the organization and then patch, within seconds, the most actively exploited vulnerabilities.
- Secure it: Stop an attack dead in its tracks, and prevent future attacks of a similar nature.
With Carbon Black endpoint data funneled into IBM BigFix, security professionals can act quickly and decisively to patch devices enterprise-wide within seconds.
Together, IBM BigFix and Carbon Black create the only solution on the market that combines continuous and centrally recorded endpoint data with the ability to enforce policies on devices enterprise-wide to solve the pervasive patch-management problem security teams are facing.
“IBM BigFix delivers the industry’s best ability to detect non-compliant and vulnerable endpoints,” said James Brennan, Director of Strategy and Offering Management, IBM Security. “Beyond detection, IBM BigFix also offers a complete vulnerability remediation solution as part of its patch compliance capabilities. The expanded partnership with Carbon Black leverages their leading ‘Patterns of Attack’ technology, which detects suspicious behaviors on the endpoint. We’re now bringing that data together, with a patch/compliance view, giving complete visibility into customers’ endpoints.”
In addition, IBM and Carbon Black have finalized new global agreements that will allow customers to purchase Carbon Black solutions directly from IBM, enabling IBM customers to quickly take advantage of the new integrated BigFix and Cb Response solution. Joint customers will experience a simple and streamlined way to adopt both products.