News: IBM X-Force Incident Response Services will help clients manage and respond to cyber attacks.
IBM has acquired Resilient Systems for an undisclosed sum to strengthen its security operations and incident response capabilities.
Resilient Systems, which is based in Massachusetts, US, automates and orchestrates the many processes needed when dealing with cyber incidents – from breaches to lost devices. This enables clients to respond and mitigate cyber incidents more quickly while helping minimise their exposure.
The company’s incident response platform is currently being used by several companies including financial services, healthcare, retail, U.S. federal, manufacturing, and education.
IBM Security general manager Marc van Zadelhoff said: "By adding Resilient Systems’ technology and expertise, IBM will have an industry-leading range of capabilities to help clients respond to cyber breaches, across consulting, services, and products.
"Cybersecurity needs to function like an immune system, both in preventing breaches, but also in quickly eradicating those that do occur."
Resilient Systems’ platform provides a comprehensive set of response playbooks for different incident types and a knowledgebase of global regulatory requirements and compliance actions. This provides best practices for responding to a range of incidents, from malware and DDoS attacks to data loss.
Resilient Systems co-founder and CEO John Bruce said: "We are excited to be joining IBM Security, the industry’s fastest-growing enterprise security company.
"By combining, the market now has access to the leading prevention, detection and response technologies available in the same portfolio – the security trifecta."
Alongside the acquisition announcement, IBM also launched the new IBM X-Force Incident Response Services, further expanding IBM’s capabilities by helping clients plan for, manage and respond to cyberattacks.
Resilient Systems’ platform will be a foundational component for these new services, along with IBM’s QRadar Security Intelligence Platform and planned integration with Resilient Systems’ technology across the full IBM Security portfolio. The new services include a remote incident response capability to help clients map how a breach occurred and take action to shut it down.
Resilient Systems’ Incident Response Platform will be combined with IBM QRadar Security Intelligence Incident Forensics, BigFix, IBM X-Force Exchange and IBM Incident Response Services to provide organisations an integrated solution to address security incidents.
Separately, IBM Security has signed a partnership with Next-Generation Endpoint Security (NGES) solution provider Carbon Black.
The solution from Caron Black will allow security analysts to carry out security forensics analysis on compromised endpoint devices, determine where a breach first occurred, map it across other devices, contain it quickly and take action to shut it down.
With the collaboration, IBM’s QRadar and BigFix security products for security intelligence and endpoint management will be integrated with Carbon Black’s enterprise protection and response products.
IBM Security vice president of Strategy Jason Corbin said: "With this new collaboration, IBM and Carbon Black are combining industry-best services and solutions.
"IBM is committed to protecting our customers’ assets from advanced threats and other cyber attacks. Carbon Black empowers our team of specialists to broaden the view it has during an incident response. Speed is of the essence and our new integrations will help extend our leadership to the endpoint and detect and respond to attacks in seconds."
Carbon Black Business Development senior vice president Tom Barsi said: "Successfully responding to and stopping cyber attacks requires a collective defence.
"The combination of IBM’s security management and Carbon Black’s detection and response solution provides customers with the single pane of glass — and the context they need — to take action on the most immediate threats. We are pleased that IBM chose Carbon Black as its premier partner in Next-Generation Endpoint Security."