Latest news with #UEBA
Yahoo
17-07-2025
- Business
- Yahoo
Securonix Expands Global Presence Through Strategic Alliance with Skyone for Next-Generation CyberOps
Strategic MSSP Partnership delivers revolutionary SIEM, SOAR, and UEBA capabilities as-a-service globally PLANO, Texas, July 17, 2025--(BUSINESS WIRE)--Securonix, Inc., a five-time Leader in the Gartner® Magic Quadrant™ for Security Information and Event Management (SIEM), and Customers' Choice in the 2024 Gartner Peer Insights 'Voice of the Customer,' today announced a strategic alliance with Skyone, a fast-growing managed security service provider (MSSP) in Latin America. The partnership expands Securonix's global presence and will allow Skyone to power its next-generation security operations center (SOC) services, embracing the latest innovations in agentic AI and displacing outdated legacy solutions. Driven by the need for greater operational flexibility, optimized resource utilization, and first-class service quality for enterprise clients, the partnership between Securonix and Skyone replaces Microsoft Sentinel as the legacy technology, promising a robust and scalable security analytics platform, enabling smarter, faster, and more proactive security operations in Latin America and beyond. "We are proud to welcome Skyone as a strategic partner in the LATAM region," said Brian Mory, SVP of Sales at Securonix. "Together, we are accelerating innovation in the SIEM market and delivering next-generation SIEM, SOAR, and UEBA capabilities as-a-service to help customers modernize their security operations." The partnership comes on the heels of Securonix's acquisition of ThreatQuotient, allowing modernization of security operations through uniting internal and external threat intelligence with real-time analytics and agentic AI. Now, through the partnership with Skyone, Securonix is able to deliver a platform that supports advanced threat detection, UEBA, and automation, all while meeting the operational needs of a managed security services provider. For more information or to inquire about partnering with Securonix, please visit: About Securonix Securonix is leading the transformation of cybersecurity with the industry's first Unified Defense SIEM powered by agentic AI, purpose-built to decide and act across the threat lifecycle with a human-in-the-loop philosophy. Built for scale, precision, and speed, our cloud-native platform empowers global enterprises to shift from reactive security to proactive, autonomous operations. Recognized as a Leader in the Gartner® Magic Quadrant™ for SIEM and a Customers' Choice by Gartner Peer Insights™, Securonix is driving the next era of intelligent, autonomous security operations. Learn more at View source version on Contacts Media Contact Sean FergusonSenior Manager, Brand & Communications, Securonixsferguson@ Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Hindustan Times
28-06-2025
- Business
- Hindustan Times
Navigating compliance challenges with integrated security platforms
Security and compliance may serve different purposes, but they're deeply interconnected. Treating them as separate often creates more problems than it solves. For many organisations, regulatory requirements feel like a moving target: Complex, time-consuming, and not always aligned with everyday security challenges. But the truth is, when compliance is built into the very fabric of security operations—how threats are detected, monitored, and responded to—it stops being a burden. With the right approach, compliance becomes a natural outcome of strong cybersecurity practices: Automated, intelligent, and seamlessly integrated into how an organisation protects itself in a fast-changing cyber threat landscape. Digital security(Representative image) Traditional compliance methods are tedious—massive log files, never-ending audits, and time-consuming investigations. That's where security analytics and automation come in. With the right tools, organisations can move from labour-intensive compliance processes to an integrated, data-driven approach. SIEM (Security Information and Event Management): Compliance starts with visibility. SIEM ingests, normalises, and correlates security data in real time, ensuring businesses meet logging and reporting requirements effortlessly. Compliance starts with visibility. SIEM ingests, normalises, and correlates security data in real time, ensuring businesses meet logging and reporting requirements effortlessly. SOAR (Security Orchestration, Automation, and Response): Compliance isn't just about collecting logs—it's about responding to incidents efficiently. With automated workflows, SOAR ensures threats are contained before they turn into compliance violations. Compliance isn't just about collecting logs—it's about responding to incidents efficiently. With automated workflows, SOAR ensures threats are contained before they turn into compliance violations. UEBA (User and Entity Behaviour Analytics): Regulations demand proof that organisations can detect and prevent insider threats and anomalies. UEBA continuously analyses user behaviour to flag anything suspicious before it becomes a full-blown incident. Instead of seeing compliance as a burden, organisations that leverage an integrated security platform experience it as a built-in advantage: an automated, intelligent process that strengthens security while reducing human error and operational fatigue. Every industry has its own regulatory maze. Whether it's financial services, health care, or retail, security teams constantly battle evolving laws and growing cyber risks. In banking and financial services, institutions must adhere to stringent regulations such as Know Your Customer (KYC), Anti-Money Laundering (AML) policies, and Reserve Bank of India (RBI) guidelines. These requirements demand constant vigilance, and SIEM solutions play a crucial role by continuously monitoring transactions and user activity, while UEBA detects anomalies indicative of fraud or insider threats. In health care, patient data protection is paramount under regulations like the Health Insurance Portability and Accountability Act (HIPAA) in the US and India's Digital Personal Data Protection (DPDP) Act. SOAR enables hospitals and health care institutions to automate incident response, reducing reaction times and minimising the risk of compliance breaches. Retail and e-commerce businesses, on the other hand, face the ongoing challenge of maintaining Payment Card Industry Data Security Standard (PCI DSS) compliance to protect customer transactions. With high transaction volumes and multiple access points, real-time monitoring is critical. Advanced security platforms ensure that every transaction and access request is scrutinised, minimising exposure to fraud and unauthorised activities. These aren't theoretical benefits—they're the realities businesses face every day. Organisations that embrace a compliance-first mindset, powered by security automation and intelligence, don't just mitigate risks—they create a safer, more predictable operational environment. Audits can be painful. A single misstep can lead to fines, reputational damage, and even legal consequences. But what if compliance wasn't just about avoiding penalties? What if it actually gave businesses a strategic advantage? By implementing an integrated security approach, organisations get automated compliance reporting (no more scrambling to gather logs or generate reports). Real-time risk detection resolves security breaches before they turn into compliance nightmares. There is enterprise-wide visibility—a single pane of glass for security and compliance—making governance smoother than ever. What starts as a compliance investment quickly becomes an organisation's strongest cybersecurity asset. This shift from reactive to proactive security strategies is essential in today's dynamic threat landscape. Cybersecurity and compliance are evolving in lockstep. As new threats emerge, regulations will continue to tighten, making it even more critical for organisations to embrace advanced security solutions. Here's what we can expect in the foreseeable future. With Artificial Intelligence (AI)-driven compliance, we can leverage machine learning for smart, fast regulatory monitoring. The zero-trust enforcement ensures security at every access point, and not just at the perimeter. With cloud-first security strategies, compliance models are able to adapt to hybrid and multi-cloud environments. Automated threat containment reduces dwell time and manual intervention through AI-driven responses. And the rise of global standardisation with cross-border regulations pushes businesses to adopt unified compliance strategies. The future isn't about choosing between compliance and security—it's about making them one and the same. Organisations that rely on manual processes will struggle to keep up with the pace of regulatory changes and cyber threats. An automated, intelligence-driven approach is no longer optional; it is a necessity. Cybersecurity isn't just a cost centre—it's a business enabler. Organisations that invest in integrated security platforms future-proof their operations against evolving threats. Compliance shouldn't be reactive; security shouldn't be an afterthought. By integrating SIEM, SOAR, and UEBA, businesses can build a resilient, future-ready security armour. As regulations continue to evolve and cyber threats grow in sophistication, the need for an automated, intelligence-driven security strategy has never been greater. Securonix's advanced approach to SIEM, SOAR, and UEBA empowers organisations to turn compliance from a burden into a business advantage. Because when security is done right, compliance follows naturally. This article is authored by Dipesh Kaura, country director, India & SAARC, Securonix.
Techday NZ
21-05-2025
- Business
- Techday NZ
Exabeam partners with Vectra AI to boost cloud threat defence
Exabeam has announced a partnership with Vectra AI to integrate the Exabeam New-Scale Security Operations Platform with the Vectra AI Platform. The collaboration aims to address the challenges faced by security teams in identifying advanced threats, particularly those that move laterally across cloud environments. Many existing solutions, originally developed for on-premises systems, struggle to detect these attacks, resulting in delayed responses and increased manual workloads for analysts. The integration combines Exabeam's SIEM, user and entity behaviour analytics (UEBA), and automated workflows with Vectra AI's network detection and response (NDR) capability. According to Exabeam, this unified solution will centralise visibility, accelerate threat detection, and streamline investigation processes across cloud-based environments. Vectra AI's platform provides visibility into lateral threat movement by monitoring activity both east-west and north-south across a variety of network architectures, including data centres, campus facilities, remote workspaces, cloud, and operational technology (OT) environments. By incorporating Vectra AI's analytics into the Exabeam infrastructure, the two companies aim to give security teams improved detection and response capabilities. Steve Wilson, Chief AI and Product Officer at Exabeam, said, "Teaming up with Vectra AI, isn't just a partnership, it's a power move. We need to shift the balance in cybersecurity, putting defenders back in control. With their cloud threat intel and our AI-driven platform, we're exposing the threats others miss and flipping the script on what modern threat detection looks like." The integration is designed to provide a number of practical benefits. Accelerated threat detection is achieved by consolidating security data from various sources and automating processes throughout the security operations centre (SOC) stack. This allows analysts to identify and respond to incidents faster and with greater accuracy. Enhanced visibility is another feature, with the combined platform able to detect network-based risks throughout cloud infrastructures by leveraging behavioural analytics. This helps security teams spot lateral movement, insider threats, and post-compromise activities that traditional tools might overlook. Streamlined operations are facilitated by out-of-the-box integration features. These include prebuilt mappings, a preconfigured Vectra AI dashboard tile, and webhook collectors, all of which are intended to speed up deployment and reduce ongoing operational complexity for SOC teams. Jeff Reed, Chief Product Officer at Vectra AI, said, "Security teams today need visibility to stay ahead of advanced threats, especially as attacks become more complex and move across hybrid and cloud environments. By integrating Vectra AI's advanced NDR with Exabeam's powerful SIEM and automation capabilities, we're empowering teams with a unified, intelligent platform to quickly identify, investigate, and stop threats before they escalate. This partnership is a major step forward in modernising security operations for the AI-driven threat landscape." The partnership is built on the understanding that today's threat landscape is increasingly shaped by cloud adoption and remote work, where attack vectors are more diverse and attacks often bypass traditional network boundaries. By providing centralised and integrated defence tools, Exabeam and Vectra AI aim to help organisations keep pace with these developments and reduce the burden on security staff. Analysts using the integrated platform are expected to benefit from simplified incident investigations, less manual effort, and improved overall security outcomes. The new solution is positioned as addressing a market demand for unified threat detection and response that adapts to both legacy systems and modern, cloud-native environments.
Techday NZ
14-05-2025
- Business
- Techday NZ
How businesses are fighting sophisticated cyber threats with AI
In an era where artificial intelligence (AI) is redefining the corporate landscape, its darker side is also beginning to take shape - and it's hitting Australian and New Zealand organisations where it hurts most: cybersecurity. Ransomware attacks, already a formidable threat to businesses, are being supercharged by AI. Threat actors are leveraging the technology not just to improve existing methods but to innovate entirely new tactics. The result is a new class of cyberattacks—faster, more convincing, and increasingly difficult to detect. An escalating threat AI is accelerating the capabilities of ransomware operators. While the core mechanics of a ransomware attack remain largely unchanged (encrypting data and demanding payment) AI enhances each phase of the attack lifecycle. According to cybersecurity experts, the most alarming consequence is the lowered barrier to entry for cybercriminals. Anyone with access to the right AI tools can now generate malware, craft convincing phishing emails, or exploit known vulnerabilities. They no longer need deep technical knowledge. AI-generated phishing emails and deepfake voice scams are becoming alarmingly realistic. Attackers can automate these campaigns at scale, fooling even vigilant employees. Traditional safeguards, such as spam filters and antivirus programs, are no match for the adaptive and evolving nature of these AI-enhanced threats. The speed of attack is also increasing. AI algorithms can scan networks, identify vulnerabilities, and develop targeted exploits in a fraction of the time it would take a human operator. As a result, businesses have a shrinking window to detect and patch weaknesses before they are exploited. A tipping point for cybersecurity The emergence of AI-driven attacks is pushing many organisations to rethink their entire approach to cybersecurity. Signature-based detection systems, long a staple in enterprise environments, are proving inadequate against threats that constantly shift form. The reality is that these attacks are becoming too intelligent for reactive systems. If an organisation is relying on known signatures or pre-defined rules, it will always be a step behind. This urgency is driving a growing shift toward analytics-driven security strategies - particularly User and Entity Behaviour Analytics (UEBA). This AI-powered approach focuses not on identifying known threats, but on recognising unusual patterns in user and system behaviour. Using AI to fight AI UEBA is emerging as a vital tool in the defence arsenal. It leverages machine learning, behavioural analytics, and data science to detect anomalies that could indicate malicious activity, even when that activity doesn't match any known threat profile. One of UEBA's key strengths lies in its ability to proactively hunt for threats. It scans for patterns that deviate from the norm, such as an employee logging in from an unusual location or accessing systems at odd hours. By doing so, it offers early warnings of potential breaches and speeds up investigation times for security teams. Automation is another powerful component of UEBA. The technology not only identifies threats but can also initiate pre-defined response actions automatically. Combined with orchestration tools, this reduces the burden on Security Operations Centres (SOCs) and allows for a faster, more coordinated response. Accuracy is also improving. Unlike legacy systems that generate a high number of false positives, UEBA tools assign risk scores to anomalies, allowing teams to focus on high-probability threats. Over time, the system becomes more precise, adapting to an organisation's unique behavioural baseline. A strategic imperative The growing complexity of ransomware and phishing attacks is making cybersecurity not just a technical concern, but a strategic business priority. For sectors like finance, healthcare, and critical infrastructure - where data breaches can have regulatory, reputational, and financial consequences - the stakes are particularly high. Many Australian and New Zealand firms are already investing heavily in AI-based defence technologies. But experts warn that implementation alone isn't enough. A comprehensive, security-first culture is essential and should include employee education, executive oversight, and alignment with broader risk management strategies. As the arms race between cybercriminals and defenders escalates, organisations must recognise that artificial intelligence is not just a threat - it's also the best line of defence. By deploying AI to combat AI, businesses can take a proactive stance in an increasingly hostile digital environment. The security landscape has changed. It's no longer a case of just defending against people behind keyboards. It's also about defending against intelligent systems. To win, organisations need smarter defences, powered by AI, informed by data, and driven by strategy.
