New integrations enable security operations teams to better combat cyberattacks in an increasingly complex threat landscape
ServiceNow announced new strategic Security Operations-focused integrations with Microsoft, extending the two companies existing partnership. The announcement was made at Knowledge 2021, ServiceNowโs flagship digital experience for its customers, partners, and developer community. New integrations with the ServiceNowย Security Operations Solution Suiteย include Microsoft Azure Sentinel, Microsoft Threat & Vulnerability Management, Microsoft Teams, and Microsoft SharePoint. These integrations will help security operations teams make smarter decisions across security planning, management, and incident response.
Recommendedย ITechย News: Agiloft Launches Module Add-On to CLM Platform for Improved Sourcing and Supplier Information Management
ServiceNow Delivers New Security Integrations with Microsoft to Help Organizations Stay Protected and Resilient in the Hybrid Era of Work
The last year has seen an alarming increase in cyberattacks aimed at major corporations, governments, and critical infrastructure during COVID-19. Disparate standalone security solutions have proven to be ineffective at assisting security operations teams to effectively detect, investigate, and respond to this increased volume of security threats. This not only wastes time and resources but can also fuel incidents to evolve into full-scale breaches.
Recommendedย ITechย News: Semtech and SAS Democratize IoT Solutions for a Better World
According to Gartner, “The threat and attack surface that Security Operations must address continues to grow as businesses expand their use of cloud services like SaaS and cloud infrastructure and platform services, as OT/industrial control system (ICS) environments become more connected, and as workers are more distributed.โ1ย With one platform, one data model, and one architecture, the Now Platform is breaking down silos created by solutions that werenโt designed to work together, and the new Security Operations integrations with Microsoft take this a step further.
โNearly 80 percent of the Fortune 500 rely on ServiceNowโs โplatform of platformsโ,โ said Lou Fiorello, VP & GM of Security Products, ServiceNow. โMore and more, customers are seeing the value of running security operations processes on the platform, leveraging enterprise business context, and automating workflows across the enterprise in real-time. The powerful new integrations announced today tie Microsoftโs security products into the ServiceNow Security Operations ecosystem, helping security teams gain the context needed to prioritize and act on security incidents faster and more efficiently than ever.โ
Recommendedย ITechย News: AppViewX Partners with Ingram Micro to Raise Awareness and Drive Greater Growth for Machine Identity Management Solution
โIn an increasingly hostile world, the only real competition is the bad actors and nation state adversaries,โ said Eric Doerr, VP Cloud Security at Microsoft Corp. โOur integrations with Microsoft Security Solutions and ServiceNow Security Operations products enables customers to gain system-wide visibility, automate security workflows, and respond rapidly to incidents to build a safer and more secure world for all.โ
Making smarter decisions across security planning, management, and incident response
As organizations settle into hybrid work, they can save millions of dollarsย with fully deployed and automated security solutions. For example, one healthcare organization with experience using ServiceNow Security Operations experienced a three-year benefit of $2.4 millionย 2. Integrating Microsoft Azure Sentinel with ServiceNow Security Incident Response (SIR) puts this into practice by facilitating automated knowledge and evidence sharing to catch security incidents early and prevent them from impacting customers.
Recommendedย ITechย News: Palo Alto Networks Introduces Complete Zero Trust Network Security
The entire process across investigation, management, and response is simplified by deploying central platforms for detection and response, reducing the burden on the security operations teams, and potential errors by automating and orchestrating end-to-end incident response workflows. This approach provides critical information and context through an enhanced view of an organizationโs security posture for security operations teams to accelerate investigation of security threats and reduce overall response times.
โWith COVID accelerating movement to the cloud, weโve seen Microsoft Azure Sentinel take off with customers in all industries who need a cloud-native SIEM to enable their remote workforce while improving their security posture,โ said Brian Rizman, Partner – Risk and Security Practice, Edgile. โOur customers see ServiceNow Security Incident Response as a strategic platform that enables a scalable data and workflow bridge to security, risk and IT tools. As a longtime partner of both Microsoft and ServiceNow, we see better operational resiliency and greater cost savings when these two worlds are integrated.โ
Recommendedย ITechย News: Ionic Advances Mobile App Development to Meet Growing Demand for a Truly Native Cross-Platform Experience
Other ServiceNow Security Operations integrations with Microsoft announced today include:
- Microsoft Teams integration with Major Security Incident Managementย (a feature of ServiceNow Security Incident Response)ย thatย streamlines and improves collaboration on critical security incidents through automated setup of dedicated Teams channels and sharing of collaboration and chat activities to the major security incident case record to maintain transparency of communications.
- SharePoint integration with Major Security Incident Managementย (a feature of ServiceNow Security Incident Response) centralizes the evidence gathered by teams during critical security incidents by automating the creation of SharePoint folder structures. The artefacts created by the different incident response groups are consolidated for visibility in the major security incident case record.
- Microsoft Threat & Vulnerability Management integration with ServiceNow Vulnerability Responseย takes in asset information, vulnerabilities, and recommendations by prioritizing vulnerabilities using asset and business context and driving remediation workflows. Remediation owners are able to action the highest risk items using pre-populated solution details to improve the security posture of an organization.
General availability of Azure Sentinel and Microsoft Threat & Vulnerability Management integrations is expected starting June 2021. Limited availability of Microsoft Teams and SharePoint integrations is expected in June 2021, with general availability planned later in the year.
Recommendedย ITechย News: Medallia Unveils New Developer and Mid-Market Customer Experience Platforms
