UPDATED 09:00 EST / MAY 31 2022

SECURITY

SentinelOne and Okta integration promises quick response to attacks

SentinelOne Inc. has announced a new integration with Okta Inc. promising to deliver a solution that will enable security teams to respond to credential compromise and identity-based attacks quickly.

SentinelOne XDR for Okta is pitched as combining SentinelOne’s XDR platform with Okta’s identity management capability to accelerate response and minimize enterprise risk. The service, according to the companies, takes the best of both for an improved customer outcome.

At the starting point, SentinelOne’s Storyline deep visibility threat agent observes all concurrent processes across operating systems and cloud workloads, providing a rich context for any potential endpoint security incident. When a threat is detected, Singularity XDR informs Okta of the last logged-in user for that endpoint and Okta provides identity context from Okta data. The combination of XDR and identity context is said to help security analysts quickly determine who is doing what on which device, significantly reducing the risk of endpoint or identity-based attacks.

SentinelOne XDR Response for Okta offers a fully automated remediation process, lifting the burden on the security operations center team and allowing analysts to focus on higher-value tasks.

Other features include the ability to enrich threat data automatically within Singularity XDR with recent login information via Okta to make security data actionable. A user suspension feature terminates active sessions originating from compromised devices to minimize response time for prevention and remediation. And a forced reset password feature prevents single sign-on lateral movement across corporations.

A final feature, force reauthentication, initiates a multifactor authentication workflow within Okta, locking the account until the user reauthenticates with a valid MFA token for identity verification.

“Attackers exploit endpoint and identity security and access gaps. SentinelOne and Okta are leaders in securing both of these enterprise domains,” Stephen Lee, vice president of technical strategy and partnerships at Okta, said in a statement. “Incorporating SentinelOne Singularity XDR into the Okta identity platform improves the contextual awareness of our solution, ensuring that every identity is verified and malicious actors cannot advance laterally in pursuit of high-value targets.”

Photo: SentinelOne

A message from John Furrier, co-founder of SiliconANGLE:

Show your support for our mission by joining our Cube Club and Cube Event Community of experts. Join the community that includes Amazon Web Services and Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger and many more luminaries and experts.

Join Our Community 

Click here to join the free and open Startup Showcase event.

“TheCUBE is part of re:Invent, you know, you guys really are a part of the event and we really appreciate your coming here and I know people appreciate the content you create as well” – Andy Jassy

We really want to hear from you, and we’re looking forward to seeing you at the event and in theCUBE Club.

Click here to join the free and open Startup Showcase event.