IBM Security partnership promises to patch critical vulnerabilities 'in seconds'

time.jpg

Image: iStockphoto/WestLight

An expanded partnership between endpoint security platform Carbon Black and IBM Security could help businesses patch vulnerabilities faster, the pair announced on Tuesday.

According to a spokesperson, the new offering will be able to “prevent 85% of enterprise-level hacks.” The press release announcing the expanded partnership said that the solution will be able to patch critical security vulnerabilities “in seconds.”

The two companies originally partnered up back in February 2016, when IBM announced that its X-Force Incident Response Services would use Carbon Black’s Enterprise Response product in its operations. They also announced then that IBM’s QRadar and BigFix would integrate with core Carbon Black products as well.

SEE: How to create a privacy policy that protects your company and your customers (Tech Pro Research)

Tuesday’s announcement builds on that original integration, while also declaring that IBM will resell Carbon Black directly to its customers as well. According to the press release, the new offering “correlates Carbon Black’s endpoint activity data with public Common Vulnerabilities and Exposures (CVE) databases to deliver a prioritized list of actively exploited vulnerabilities tailored to each organization.”

More about IT Security

The problem with most enterprise security, the press release states, is that businesses tend to patch broadly due to poor visibility, and may miss a serious attack vector. The new collaborative effort between the firms seeks to increase transparency and point out which endpoint vulnerabilities need to be prioritized.

“The expanded partnership with Carbon Black leverages their leading ‘Patterns of Attack’ technology, which detects suspicious behaviors on the endpoint,” James Brennan, director of strategy and offering management at IBM Security, said in a press release. “We’re now bringing that data together, with a patch/compliance view, giving complete visibility into customer’s endpoints.”

The existing integration of IBM BigFix and QRadar with Carbon Black helps to further an enterprise’s understanding of the vulnerabilities that threaten its security, and help escalate and remediate as needed.

Carbon Black endpoint data will be “funneled” into IBM BigFix, the press release said, which is the key piece to allowing security professionals to act more quickly and make those patches in “seconds.” According to the press release, it is “the only solution on the market that combines continuous and centrally recorded endpoint data with the ability to enforce policies on devices enterprise-wide to solve the pervasive patch-management problem security teams are facing.”

The 3 big takeaways for TechRepublic readers

  1. IBM Security and Carbon Black expanded their partnership to provide a new offering that can patch vulnerabilities in “seconds” with a more targeted approach.
  2. The partnership also includes deeper integration between IBM’s QRadar and BigFix and Carbon Black’s endpoint platform.
  3. The expanded partnership centers around funneled endpoint data and Common Vulnerabilities and Exposures (CVE) databases.

Also see