Virtualization Technology News and Information
Article
RSS
Onapsis and Exabeam Partner to Bring ERP to the Security Operations Center

Exabeam today announced a technology alliance and product integration with Onapsis, to give security teams access to enterprise resource planning (ERP) vulnerability logs in their security incident and event management (SIEM) for security monitoring, threat detection, incident response and audit compliance.

Global 2000 organizations run their business on, and store their sensitive data in, ERP applications such as SAP and Oracle E-Business Suite. Nation-state threat actors, hacktivitists and cybercriminals are turning their sights to these systems with targeted campaigns using technology found on the dark web. Many organizations remain vulnerable, having not updated security patches, despite warnings from DHS US CERT to update critical patches, or because they continue to rely on legacy security approaches. In addition, a lot of the biggest breaches broke through the perimeter with phishing, third parties, or common vulnerabilities and then pivoted to compromise ERP systems.

By making business-critical ERP applications an integrated part of the Security Operations Center (SOC), organizations gain visibility and context needed to investigate and respond to incidents and comply with data-intensive regulations such as GDPR. The new joint solution integrates Onapsis and the Exabeam Security Management Platform (SMP) to allow security teams to quickly detect and respond to threats by providing them with continuous visibility of ERP vulnerabilities, additional context to investigate security alerts and the ability to quickly respond to incidents.

The new integration allows the Exabeam SMP to ingest ERP vulnerability logs from Onapsis via syslog to gather all the critical vulnerabilities, misconfigurations and ERP security events detected by Onapsis. ERP data is combined with data from other systems, modeled using behavioral analytics, and displayed in Exabeam Smart Timelines, machine-created timelines of user and device behavior, so analysts can quickly detect and investigate attacker tactics, techniques and procedures.

"InfoSec professionals today work in a threat environment where they face adversaries with unprecedented sophistication, persistence and technology," said Ted Plumis, VP of Worldwide Channels at Exabeam. "We are excited to work with Onapsis to deliver a streamlined security solution for ERP systems. This partnership ensures that our mutual customers can quickly identify suspicious activity and remediate threats in their environment."

"We are excited to be onboard as a partner of Exabeam and combining our product offerings. With the growing trend in attacks targeting the organization's core applications, it is imperative that security teams understand and evaluate the logs and events of their ERP systems. Our partnership with Exabeam will allow companies to gain awareness into the security posture of their ERP business applications as it will now be fed into and displayed on their SIEM dashboard," said Darren Gaeta, VP of Worldwide Alliances and Channels, Onapsis Inc.
Published Wednesday, March 13, 2019 10:14 AM by David Marshall
Filed under:
Comments
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
Calendar
<March 2019>
SuMoTuWeThFrSa
242526272812
3456789
10111213141516
17181920212223
24252627282930
31123456