Today at Connect 2020, our company’s annul cybersecurity conference, we made some exciting announcements, including the creation of a Next-Gen SOC Alliance. The alliance empowers SOC teams with visibility, prevention, detection and response capabilities that can uniquely leverage the VMware fabric and features industry leaders: Splunk, IBM Security, Google Cloud’s Chronicle, Exabeam, and Sumo Logic.
The Next-Gen SOC Alliance brings a critical mass of XDR context and capabilities to SOCs in a fully intrinsic way – one that can uniquely leverage the VMware fabric. In partnership with the industry’s leading SIEM/SOAR players, we’re setting a strong vision for the modern SOC and delivering unprecedented visibility and remediation capabilities across endpoints, networks, workloads, and containers.
The alliance features Splunk, IBM Security, Google Cloud’s Chronicle, Exabeam, and Sumo Logic integrations with the VMware Carbon Black Cloud to deliver key XDR capabilities and context into SIEM technologies that power the modern-day SOC. Equally important, the combined solutions will be able to take advantage of VMware’s Intrinsic Security framework and enable SOC teams to:
- Leverage the VMware fabric – doing away with many of agents and appliances SOCs would normally deploy for visibility, prevention, detection, and response.
- Gain far richer context about the infrastructure and applications being protected.
- Operationalize more of security with (and through) IT via Carbon Black integrations with VMware management consoles.
- Gain centralized security context, which enables organizations to detect, analyze and respond to data in a unified SIEM at machine speed.
- Use automation and orchestration tools that combine with XDR capabilities to allow SOCs to scale and standardize their investigation and response processes.
- Get actionable answers to large-scale queries and remote remediation from within Splunk, IBM Security, Google Cloud’s Chronicle, Exabeam, and Sumo Logic platforms.
We’re very excited about what this alliance brings to customers. Here’s a look at what some of the alliance members had to say:
“Splunk’s Security Operations Suite acts as the backbone for some of the most advanced SOCs in the world. As the security industry continues to embrace data at the center of their security strategy, it’s more important than ever to combine the power of Splunk’s industry-leading SIEM and SOAR solutions with XDR to fight back against increasingly sophisticated cyber actors. We are pleased to bring Splunk Enterprise Security and Splunk Phantom to this alliance with VMware Carbon Black and look forward to helping our mutual customers around the world solve their toughest security challenges with data.” – Haiyan Song, Senior Vice President and General Manager of Security Markets, Splunk.
“IBM Security is a major proponent of open technologies and communities that reduce complexity for clients, so we are pleased to join the Next-Gen SOC Alliance to further that mission. IBM provides leadership in security operations technology powered by IBM Cloud Pak for Security and QRadar to help organizations gain complete security insights and act faster with AI and automation across their hybrid cloud environments including infrastructure and endpoint telemetry from VMware and Carbon Black.” – Justin Youngblood, Vice President, IBM Security
“Customers are looking for better security insight and response, and the combination of VMware Carbon Black’s endpoint context and Google Chronicle’s ability to detect everything at planet scale provides the foundation required for the SOC of the Future.” – Sunil Potti, VP/GM, Google
“Since our founding, Exabeam has been committed to delivering capabilities that make SOC teams more efficient and effective in detecting, investigating and responding to cyber threats. We are extremely excited about being part of VMware’s Next-Gen SOC Alliance to bring enhanced integration capabilities to Exabeam and VMware Carbon Black joint customers.”– Ted Plumis, Vice President of Channels and Business Development, Exabeam.
“Traditional SIEM is on a collision course with the cloud. As more enterprises move large workloads and modern apps to the cloud, the attack surface widens, requiring real-time security analytics and automation only a SaaS SIEM can deliver to help SOC teams protect their postures. We’re thrilled to be part of the Next-Gen SOC Alliance to leverage the VMware fabric and provide automated security workflows, advanced threat detection and best-in-class cloud visibility to address modern security operation challenges.” – Greg Martin, General Manager and VP of Security, Sumo Logic.