Partnership at the intersection of user least privilege management and AI-driven malware prevention designed to stop adversaries from using malicious applications to access restricted data
Cylance and Thycotic have announced the compatibility of CylancePROTECT with Thycotic Privilege Manager.
CylancePROTECT uses proprietary artificial intelligence (AI) to prevent malicious applications from executing and stopping fileless attacks from hijacking legitimate system resources. Privilege Manager enables security operations center (SOC) staff to set, monitor, enforce, and prove compliance with rigorous application and privileged access security policies. Working together, CylancePROTECT and Privilege Manager combine their proactive strategies to prevent malware from exploiting endpoints, reducing organisational risk and optimising operational efficiency.
“Security professionals can view CylancePROTECT threat scores from the Privilege Manager dashboard and initiate coordinated, enterprise-wide responses that range from updating quarantine lists to disconnecting offending endpoints for offline remediation,” said Didi Dayton, vice president worldwide channels and alliances at Cylance. “Together, CylancePROTECT and Privilege Manager ensure that only legitimate applications are allowed to operate and that the data accessed by those applications adheres to established security policies.”
Cylance provides continuous protection by blocking malicious and unwanted or unauthorised applications before they execute, including stopping file-less attacks. Cylance’s AI-based intelligence, now available through Privilege Manager, provides a simplified console view specifically designed for help desk decision making. Compelling use cases include reputation reporting, global list management, and workflow integrity for application control.
“The partnership with Cylance allows users to check in real time the safety of applications while still keeping with the least privilege model,” said Jai Dargan, vice president of product management at Thycotic. “To ensure users at the endpoints are not prevented from doing their jobs, Privilege Manager will send an application to verify its reputation prior to execution. Privilege Manager can then elevate a clean application to execute or it can be added to a blacklist if found to be bad. The flexible rule set enables complete automation of applications and makes a solution that actually implements and enforces a least privilege security model.”
Use cases of the combined Cylance + Thycotic technology offering include:
- Application execution control. Preventing malicious applications from accessing restricted data is a prerequisite for achieving a robust security posture. CylancePROTECT and Privilege Manager consolidate and correlate information about applications attempting to execute in the environment to provide security teams with the detailed information they need for efficient forensic analysis and incident response. The Privilege Manager dashboard includes a one-click link to the CylancePROTECT Threat Details page, where security analysts can quickly assess suspect files and add them to whitelists or blacklists as appropriate.
- Reputation reporting. During an investigation, security analysts must navigate between multiple applications to gather all available threat intelligence data to determine if endpoints and applications are safe. CylancePROTECT leverages AI to proactively stop threats and implement a prevention-first security posture. This allows incident responders to conduct investigations in a low-risk state and analyse aggregated data for speedier downstream decision making. Enterprise accounts or endpoints flagged as suspicious can quickly have their access permissions modified, thereby reducing the risk of further system infections.
Visit us today for additional details.
About Cylance® Inc.
Cylance develops artificial intelligence to deliver prevention-first, predictive security products and specialised security services that change how organisations approach endpoint security. Cylance’s security solutions provide full spectrum predictive threat prevention and visibility across the enterprise, combatting threats such as malware, ransomware, fileless malware, malicious scripts, weaponised docs, and other attack vectors. With AI based malware prevention, application and script control, memory protection, device policy enforcement, root cause analysis, threat hunting, automated threat detection and response, coupled with expert security services, Cylance can protect endpoints without increasing staff workload or costs. For more information visit: www.cylance.com.
About Thycotic
The easiest to manage and most readily adopted privilege management solutions are powered by Thycotic. Thycotic’s security tools empower over 10,000 organisations, from small businesses to the Fortune 500, to limit privileged account risk, implement least privilege policies, control applications, and demonstrate compliance. Thycotic makes enterprise-level privilege management accessible for everyone by eliminating dependency on overly complex security tools and prioritising productivity, flexibility and control. Headquartered in Washington, D.C., Thycotic operates worldwide with offices in the UK and Australia. For more information, please visit www.thycotic.com.