Tanium, the provider of converged endpoint management (XEM), announced the first of several powerful integrations between Microsoft and the Tanium XEM platform.
The integration marks the latest expansion in a relationship that includes Tanium’s membership in the Microsoft Intelligent Security Association (MISA) and its availability in the Microsoft Azure Marketplace.
By making Tanium’s rich, real-time endpoint data accessible directly from the Sentinel console, the integration enables IT organisations to comprehensively detect, investigate, triage, prioritise, and remediate threats automatically, extending Sentinel’s advanced security and analytics capabilities, reducing the number of false positives that require disposition, and allowing security practitioners to identify better threats that might otherwise be missed.
“Environments like ours are complex — there’s a great diversity of the types of devices and many users accessing sensitive information,” said Mark Wantling, CIO at the University of Salford. “It‘s difficult for my relatively small InfoSec team to manage, so I’m very excited about Tanium’s integration with Microsoft Sentinel. Now my team can investigate, identify, triage, and remediate threats quickly without leaving the Sentinel console, and that’s a game-changer.”
The Tanium integration with Sentinel also enables active threat hunting. With Tanium’s detailed real-time data taken directly from the endpoint, security practitioners can better contextualise and correlate alerts sourced from both Microsoft and Tanium with almost no delay across an entire IT environment. They get accurate real-time data rather than information that may no longer be correct due to inherent latency. Additionally, Tanium gives incident responders the ability to take immediate action on alerts as they happen, including quarantining a device, deploying a patch, or updating software, all from the Sentinel console. Customers benefit from proactive, predictive, automated management of their entire IT stack.
Tanium + Sentinel gives Microsoft customers the ability to monitor and ensure their Microsoft solutions are highly available and operate at optimal health. With its real-time distributed architecture, Tanium can independently verify that all Microsoft services are deployed and up-to-date and validate that it is fully performant on every endpoint. If needed, customers can easily deploy a patch or quarantine a device in seconds to ensure they get the most out of their Microsoft investments.
“We’re excited to continue to expand our relationship with Microsoft,” said Rob Jenks, SVP of corporate strategy at Tanium. “Already, we work together to make Microsoft environments healthier and more secure by reducing risks for customers and protecting their investments in Azure, and soon we’ll be releasing a series of powerful integrations with Microsoft tools in addition to our Sentinel Integration.”
In addition to joining MISA, Tanium is available in the Microsoft Azure Marketplace, online store providing applications and services for use on Azure. Customers can purchase and provision Tanium directly from the marketplace and apply the purchase to their Microsoft Azure Consumption Commitments (MACC).
Tune in now to hear Tanium CEO Orion Hindawi and Microsoft Corporate VP of Cybersecurity Ann Johnson discuss the vision for the partnership and how Tanium’s real-time data and control can enhance security, performance, and automation for today’s growing enterprises.