User Behavior Analytics Platform Extends Risk-Scoring via APIs to Okta for Dynamic Access Provisioning and Adaptive Multi-Factor Authentication
LOS ANGELES, CA – Gurucul, the user behavior analytics and identity access intelligence company, today announced that its Cloud Analytics Platform (CAP) has been certified to integrate with Okta’s Identity Access Management as a Service (IDaaS) platform. Using identity data from Okta, Gurucul CAP’s behavior-based machine learning models can identify and score the severity of access risks and anomalous behavior enabling Okta to dynamically respond to suspicious activity with adaptive multi-factor authentication and other access control measures.
With attackers increasingly compromising and hijacking user credentials, research firm Gartner, Inc. has identified user and entity behavioral analytics (UEBA) and Cloud Access Security Brokers (CASB) as two of the top 10 technologies that should be deployed to take advantage of digital business opportunities while managing risk. Gurucul CAP, an API-based CASB, is part of the Gurucul UEBA suite that includes Threat and Access Analytics Platforms for full visibility into identities, accounts, access and activity for both on-premises and cloud environments.
“Gurucul’s ability to provide Okta with risk-scores on user access and suspicious activity via API integration, enables them to dynamically invoke adaptive multi-factor authentication, block access, provision and deprovision access rights, monitor for privilege access abuse and take other measures to protect cloud applications against stolen account credentials and insider threats,” said Rosanna Pellegrino, VP Strategic Alliances for Gurucul.
Gurucul CAP combines an API-based CASB architecture, UEBA and Identity Access Intelligence (IAI) capabilities with access and activity data from Okta to predict and detect insider threats, account compromise, access abuse and data exfiltration. With the full Gurucul Risk Analytics suite, customers can also monitor for access and privilege risks as well as anomalous user behavior across cloud and on-premises data and applications. Gurucul uniquely provides a 360 degree view for identity, accounts, access and activity for hybrid environments in one UBA platform.
“Cloud applications have transformed identity into a security perimeter as well as an attack vector for adversaries,” said Saryu Nayyar, CEO of Gurucul. “This integration with Okta provides Gurucul with a rich additional source of intelligence to risk score activity so that customers can dynamically respond to access risks and anomalous behavior using multi-factor authentication and other control mechanisms.”
Most enterprises will maintain confidential and intellectual property in both on-premises repositories and cloud applications for years to come. However, cloud-only security solutions have limited visibility into on-premises infrastructures in the same manner that log event management and SIEM products lack visibility into Cloud applications. As a result, multi-vendor UBA for hybrid environments has divided context and visibility which limits their effectiveness. Gurucul GRA provides an enterprise-wide UBA platform for hybrid environments that combines full context and visibility via integration with IDaaS, SaaS, IaaS and PaaS platforms, machine learning and a big data infrastructure.
Gurucul is the leader in User Behavior Analytics (UBA) and Identity Access Intelligence (IAI). The Gurucul GRA platform predicts and prevents attacks, by insiders or outsiders, that exploit user identities as a threat surface for compromising data center and cloud apps. It was recently named Best Behavior Analytics/Enterprise Threat Detection platform in both the 2016 SC Awards US and SC Awards Europe. Gurucul GRA combines IAI to reduce excess access rights and access outliers that open up identities to phishing and account compromise attacks, and UBA to perform user behavior anomaly detection to identify account abuse, compromise and suspicious activity.
Availability
Gurucul CAP with Okta certified integration is available immediately from Gurucul and its INSIDER business partners worldwide.
About Gurucul
Gurucul is changing the way enterprises protect themselves against insider threats, account compromise and data exfiltration on-premises and in the cloud. The company’s user behavior analytics and identity access intelligence technology uses machine learning anomaly detection and predictive risk-scoring algorithms to reduce the attack surface for accounts, unnecessary access rights and privileges, and to identify, predict and prevent breaches. Gurucul technology is used globally by organizations to detect insider threats, cyber fraud, IP theft, external attacks and more. The company is based in Los Angeles. To learn more, visit gurucul.com and follow us on LinkedIn and Twitter.