Story image

Ziften & Microsoft: The partnership bringing threat defence to almost every OS

29 May 18

Endpoint security firm Ziften Is making serious headway into a partnership with Microsoft and its Windows Defender Advanced Threat Protection (ATP) platform, as it continues to bring Microsoft technology into macOS and Linux, including Ubuntu, CentOS, RedHat Linux, Scientific Linux, Fedora, and others.

Last month Ziften announced its membership in Microsoft’s new Intelligent Security Association as part of a collaborative effort to strengthen endpoint protection, share threat intelligence, and protect organisations from threats.

Ziften joins Barracuda, Forcepoint, Zscaler, Palo Alto Networks, SailPoint and other global security firms that have also joined the Association.

Microsoft 365 Security general manager Andrew Conway says the Association is all about improving cooperation from leading vendors to improve security for mutual customers.

“Continued integration and intelligence sharing from Ziften within the context of the Microsoft Intelligent Security Graph enables customers to more quickly and accurately detect, investigate and respond to attacks across their entire endpoint and cloud base.”

Ziften’s involvement in the Microsoft Intelligent Security Association will benefit mutual customers through a number of processes, including endpoint and cloud threat protection for Windows, macOS, and Linux, as well as ‘2-click’ integration with Windows Defender ATP.

  • Threat Protection for all Endpoints and the Cloud: The integration delivers advanced endpoint detection and response solutions, and cloud visibility and security solutions for Windows, macOS, and Linux systems.
  • Easy to Integrate Security Solutions: The simple Ziften “2-click” integration with Windows Defender ATP enables customers to detect, view, investigate, and respond to advanced cyber-attacks using only the Windows Defender ATP management console.
  • Intelligence Sharing to Turn the Tide to Customers’ Advantage: Working within the Intelligent Security Association, Ziften’s integration brings intelligence signals from additional sources to bear, helping customers detect and respond to threats faster.
  • Putting the Power of the Cloud to Work: The power of the cloud transforms monitoring at scale. The integrated, Azure powered approach means customers can instantaneously search 6 months of rich machine timeline unifying security events from Windows, macOS, and Linux-based systems – both physical and virtual.

Ziften CEO Chuck Leaver says the membership is a huge win for mutual customers and prospects.

“As security vendors, we all recognise the need to cooperate and collaborate to protect our customers and their employees. Kudos to Microsoft for leading this industry effort,” he says.

Ziften has been heavily involved with Microsoft and other security vendors on projects revolving around Windows Defender ATP.

In November 2017 Ziften, Bitdefender and Lookout were named as three vendors who would integrate their respective platforms with Microsoft’s Windows Defender ATP. The integration enables customers to run Windows Defender ATP on macOS and Linux-based devices.

Ziften’s Zenith systems and security operations now provide the ability for customers to detect attacks and zero-day exploits to uncover the full extent of a breach and to quickly respond to attacks.

“The days of siloed endpoint security tools that provide only incomplete, point-in-time data exposing organisations to unacceptable risks and unnecessary costs is ending. Together, we help security teams to address today’s visibility, security and control challenges at the endpoint and in the cloud,” Leaver concludes.

Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.
What disaster recovery will look like in 2019
“With nearly half of all businesses experiencing an unrecoverable data event in the last three years, current backup solutions are no longer fit for purpose."
Proofpoint launches feature to identify most targeted users
“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”
McAfee named Leader in Magic Quadrant an eighth time
The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.
Symantec and Fortinet partner for integration
The partnership will deliver essential security controls across endpoint, network, and cloud environments.
Is Supermicro innocent? 3rd party test finds no malicious hardware
One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.
25% of malicious emails still make it through to recipients
Popular email security programmes may fail to detect as much as 25% of all emails with malicious or dangerous attachments, a study from Mimecast says.