Jul 31, 2019
Accelerating Investigations with Tanium and Chronicle BackstoryBy John Foscue
Tanium’s mission is to deliver full visibility and control of all network-connected devices. Our partnerships are focused on furthering that mission for our customers. Today we are excited to announce the newest phase of our integration with Chronicle’s Backstory, originally announced in March of this year.
The Tanium platform provides a unified view across customer endpoints, whether laptops, servers, virtual machines, containers, or cloud infrastructure. In addition, our platform provides the ability to quickly remediate issues at speed and scale. Chronicle’s Backstory is built on Google architecture and provides massive-scale, cloud-based analytics of enterprise telemetry, linking endpoint, network and other types of data into a coherent, context-rich picture.
Our integration now empowers customers to use Tanium Threat Response to proactively stream enterprise-wide telemetry data directly from endpoints to the Backstory platform. This direct streaming provides flexible transmission options and reduces the time it takes to send data to Backstory. Backstory quickly ingests the data and splices it with other log sources – firewall, netflow, proxies – enabling rapid exploration and identification of suspicious events for up to a year.
Chronicle and Tanium will be at Black Hat USA 2019 in Las Vegas, August 3-8. If you’re interested in a solution demo or meeting, please contact us at [email protected].