IBM announced Cloud Pak for Security, featuring innovations to connect with any security tool, cloud or on-premise system, without moving data from its original source. The platform includes open-source technology for hunting threats, automation capabilities to help speed response to cyberattacks, and the ability to run in any environment, said a release from the company.
Cloud Pak for Security is the first platform to leverage new open-source technology pioneered by IBM, which can search and translate security data from a variety of sources, bringing together critical security insights from across a company’s multicloud IT environment. The platform is extensible, so that additional tools and applications can be added over time.
As businesses move further into cloud maturity, applications and data are frequently spread across multiple private and public clouds and on-premise resources. Attempts to protect this fragmented IT environment often require security teams to undertake complex integrations and continuously switch between different screens and point products.
In a recent SANS Institute report, sponsored by IBM Security, more than half of security teams surveyed said they struggle to integrate data with disparate security and analytic tools and combine that data across their cloud environments to spot advanced threats.
“As businesses move mission-critical workloads to hybrid multicloud environments, security data is spread across different tools, clouds and IT infrastructure. This can create gaps that allow threats to be missed, leading security teams to build and maintain costly, complex integrations and manual response plans,” said Mary O’Brien, general manager, IBM Security. “With Cloud Pak for Security, we’re helping to lay the foundation for a more connected security ecosystem designed for the hybrid, multicloud world.”
IBM collaborated with dozens of clients and service providers during the design process, developing a solution to address critical interoperability challenges that permeate the security industry. The Cloud Pak for Security includes connectors for pre-built integrations with popular security tools from IBM, Carbon Black, Tenable, Elastic, BigFix, Splunk, as well as public cloud providers including IBM Cloud, Amazon Web Services2 and Microsoft Azure2. The solution is built on open standards so that it can connect additional security tools and data from across a company’s infrastructure.
“As organisations shift to the hybrid cloud model, security challenges do not dissipate. The challenges of securing multiple data sources, locations and access rules require a solution that can be dynamic, and readily available to integrate with a range of security and cloud platforms. A key advantage for security professionals of the IBM Cloud Pak for Security is the ability to analyze data without moving it. This reduces risk and complexity while accelerating the speed with which the data can be analyzed, a tangible benefit for organizations,” said Phil Hassey, CEO, CapioIT.