According to a recent announcement, SAS has achieved technical integration of its SAS Cybersecurity analytics solution with the McAfee Data Exchange Layer (DXL), which extends to McAfee ePolicy Orchestrator (McAfee ePO) database and McAfee’s partner ecosystem.
Through the McAfee DXL, SAS Cybersecurity delivers continuously updated risk scores for every network-connected asset. The solution derives risk from extensive composite scoring against multiple behavioral measures and the behavior of an asset’s peer group.
“Given seemingly exponential increases in IoT devices, virtual machines and cloud services inside most enterprise networks, security organizations often lack the network knowledge and context necessary to prioritize risks and jump-start investigations,” said Stu Bradley, VP, Cybersecurity Solutions, SAS. “This integration not only provides much-needed network behavior context at scale; it also automates the triangulation of risk across end point, identity and threats using DXL data. The result is significant efficiency gains, enhancing detection while eliminating the need for extensive manual data manipulation.”
As an input to risk scoring, SAS Cybersecurity is designed to enrich data to enhance behavioral records across data dimensions. Customers with McAfee DXL-compatible solutions can opt to have the composite risk scores, enriched records and underlying contextual data published to their systems.