As identity becomes increasingly central to organisational security, the risks associated with compromised systems are rising. Attackers continually exploit misconfigurations and weak controls, seeking to infiltrate sensitive data pools.
To counteract these threats, Cohesity has enhanced Identity Threat Detection and Response (ITDR) capabilities "with purpose-built capabilities that can proactively strengthen identity security posture, stop identity-driven attacks in real time, and accelerate recovery with precision."
“Identity is at the heart of cyber resilience. When identity systems are compromised, the impact can be immediate and business-wide,” stated Vasu Murthy, chief product officer at Cohesity. The company's unified view of hybrid identity risk allows organizations to reduce vulnerabilities and respond rapidly to threats.
The new ITDR features provide key functionalities that enhance identity security across both AD and Entra ID. Prior to an attack, continuous monitoring and inspection of identity posture allow for the early detection of misconfigurations and risky changes, which helps minimise the attack surface.
During an incident, automated remediation capabilities swiftly counter malicious changes, executing critical rollback actions without relying on human intervention. Post-attack, Cohesity accelerates incident response by translating complex identity change data into accessible language, allowing for efficient investigation and remediation.
Cohesity’s ITDR capabilities include:
- Vulnerability Assessment: Continuous monitoring for exposure and compromise.
- Automatic Rollback: Real-time reversal of detrimental identity changes.
- Tamperproof Tracking: Immutable logging of identity changes, safeguarding against log manipulations.
- Service Account Protection: Detection of misconfigured or excessively privileged service accounts.
- Entra ID Change Tracking: Near real-time updates on role assignments and user attributes.
- Compliance Reporting: Templates aligned with critical regulatory frameworks.
These features illustrate Cohesity's commitment to improving cyber resilience, evidenced by a 90% reduction in AD forest recovery time and a 25% reduced likelihood of successful attacks.
As organisations grapple with the complexity of identity incidents, Cohesity's latest advancements equip security teams with the tools needed to maintain operational continuity in today's rapidly evolving threat landscape.
