Integrating Carbon Black and Blue Coat extends power of network detonation and security analytics to the endpoint
Bit9 + Carbon Black has integrated the Carbon Black endpoint detection and response solution with Blue Coat’s next-generation malware analysis and security analytics network solutions. Bit9 + Carbon Black is a founding member of the Blue Coat Alliance Ecosystem of Endpoint Detection and Response (EDR) partner program, announced earlier this year.
The integration provides Carbon Black and Blue Coat customers with several powerful new use cases:
- Remote file analysis via Blue Coat’s Malware Analysis Appliance: This integration enables Carbon Black to automatically send unknown files to Blue Coat’s Malware Analysis Appliance for detonation and analysis. Based on the results, file scores and alerts are immediately sent to Carbon Black, where further investigation can take place. This extends Blue Coat Malware Analysis capabilities to Carbon Black to protect devices from activities that would traditionally evade network security protections, such as off-network downloads or USB devices.
- Empowered Incident Response via Blue Coat Security Analytics: When investigating an attack using Blue Coat Security Analytics, this integration provides a quick pivot integration into Carbon Black. This allows administrators to quickly see if a file executed on an endpoint and if so, take necessary incident response actions such as endpoint isolation, live response, or attack banning.
“Uniting network security and endpoint detection and response is crucial,” said Peter Doggart, vice president, business development, Blue Coat. “By integrating our network analysis and analytics platforms with Carbon Black, the leader in endpoint detection and response, Blue Coat is providing customers with a truly comprehensive end-to-end solution—from complete network to endpoint visibility and detection, to swift and effective incident response and remediation.”
Tom Barsi, Bit9 + Carbon Black’s vice president of business development, said, “Thousands of companies depend upon Blue Coat technology to defend their networks. This integration will enable organizations to extend those protections down to the endpoint with Carbon Black. By uniting endpoint detection and response, and network detonation and analytics, organizations can leverage both endpoint and network investments to achieve better security.”
This integration is now available free of charge to joint customers using Carbon Black version 5.0 and above and Blue Coat Malware Analysis Appliance.