Partner Perspectives: Collaborate and Consolidate with King & Union and Carbon Black

Share and earn Cybytes
Facebook Twitter LinkedIn Email

Peter Prizio Jr. is the Senior Product Manager for King & Union.

One of the biggest challenges facing security organizations today is dealing with the overwhelming number of alerts received each and every day. A staggering 27 percent of IT professionals report receiving more than one million alerts daily, while 55 percent report receiving more than 10,000. The growing number of enterprise security solutions are adding to the number of alerts and at the same time, security analysts are increasingly in-demand, with more than 120,000 unfilled analyst positions in the United States alone. The increasing amount of data and shortage of skilled analysts creates a scenario in which experts are unable to review and respond to alerts, dive into those that warrant further investigation or mitigate as necessary because they’re pressed for time and resources.

The best – and in our opinion, the only – way to combat this problem is through collaboration and efficiency improvements to threat investigation, which both require integrated workflows that close the gaps between security solutions.

Enter King & Union’s partnership with Carbon Black.

Carbon Black’s incident response and threat hunting solution, Cb Response, is an industry-leading platform that makes it easy to consolidate security tools and prevent, investigate, remediate and hunt for threats.

King & Union’s flagship product, Avalon, is a collaborative threat analysis platform designed to help analysts cut through the noise and reduce time spent on threat investigations from hours to minutes. Through real-time collaboration, automated enrichment workflows, modern graph visualization, centralized knowledge management and consolidated threat intelligence, analysts can rapidly identify an adversary’s infrastructure.

The Carbon Black and Avalon integration allows users to apply collaboratively-generated threat intelligence directly to endpoints. Organizations can identify threats and threat actor infrastructure to create intelligence that can be applied to their Carbon Black-covered systems.

As a result of this new partnership, customers are able to take an IOC from Cb Response and drop it into the Avalon platform to conduct a threat investigation. Avalon will enrich the IOC in a custom workspace and the analyst can quickly determine the best course of action, including real-time collaboration with other analysts. Once the investigation is complete, the analyst can use the Avalon-Cb Response integration to ingest the Avalon intelligence and apply it to endpoints.

The integration allows security experts to enrich Carbon Black threat data with Avalon and create robust yet easy-to-understand visual reports of any investigation. Analysts are also able to revisit past threat intelligence and use the results of previously completed investigations to enrich the data of new investigations. Thanks to the partnership, customers never need to worry again about losing investigative intelligence when teams change personnel, or a file is deleted, overwritten or lost.

Together, Carbon Black and King & Union are breaking down barriers to information sharing through Avalon’s secure approach to collaboration and Carbon Black’s open APIs. Through this powerful integration and seamless end-to-end solution, we can all outsmart our adversaries, together.

To learn more about this integration, please visit King & Union’s page on the Carbon Black Partner Locator.

The post Partner Perspectives: Collaborate and Consolidate with King & Union and Carbon Black appeared first on Carbon Black.

Share this post and earn Cybytes
Facebook Twitter LinkedIn Email
About Carbon Black, Inc.
Carbon Black is the leading provider of next-generation endpoint security. Carbon Black’s Next-Generation Antivirus (NGAV) solution, Cb Defense, leverages breakthrough prevention technology, “Streaming Prevention,” to instantly see and stop cyberattacks before they execute. Cb Defense uniquely combines breakthrough prevention with market-leading detection and response into a single, lightweight agent delivered through the cloud. With more than 7 million endpoints under management, Carbon Black has more than 2,500 customers, including 30 of the Fortune 100. These customers use Carbon Black to replace legacy antivirus, lock down critical systems, hunt threats, and protect their endpoints from the most advanced cyberattacks, including non-malware attacks.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play

Support Cybrary

Donate Here to Get This Month's Donor Badge

Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?