Delivering Cb LiveOps on the PSC gives customers a consolidated and comprehensive, cloud-delivered security stack, one that bridges security and IT operations. As a result, organisations can move away from existing offerings in the market, such as those offered by Tanium and CrowdStrike, to a solution that delivers a full suite of functionality serving both security and IT teams. With Cb LiveOps, security teams can perform in-depth investigations, conduct remote remediation from the cloud, and perform on-demand vulnerability assessments, all within a single solution.
“We are excited to see Cb LiveOps change the game for security operations,” said Ryan Polk, Carbon Black’s Chief Product Officer. “To date, there has been a gap in security platforms, which lack the ability to make real-time inquiries across the entire endpoint fleet. By leveraging and extending osquery, the open-source tool used by hundreds of the world’s largest enterprises, we are filling this gap, delivering what we believe is the most complete security platform, which combines advanced prevention, detection, response, and IT operations delivered from the same agent, same login screen, and same UI as all other Carbon Black offerings on the PSC.”
“Cb LiveOps enables our incident response (IR) team to acquire key forensic artifacts that normally would require additional collection and offline parsing,” said Tim Stiller, Senior Incident Response Consultant at Rapid7. “It allows our teams to scale out our response from one to hundreds of systems. This allows us to quickly scope out an engagement to determine root cause.”
Cb LiveOps provides additional value in bridging the gap between security and operations and empowers IT administrators to provide ROI well beyond the typical security use cases including: immediate IT hygiene analysis, on-demand compliance audits, and seamless asset management.
New Use Cases Enabled by Cb LiveOps
“There is a need for a combined strategy between IT and security,” said Carl Erickson, Head of Information Security at Signify (previously Philips Lighting). “Cb LiveOps is directly in line with what is required from SOC analysts. The ability to actually do live queries rather than rely on teams to use existing data is a big step forward.”