Today we are proud to announce our integration with Chronicle’s Backstory security analytics platform. This integration will give our joint customers the best of endpoint visibility and control combined with the unmatched data processing and intelligence of the Chronicle platform. Together, we will help customers get more out of security telemetry to more effectively investigate incidents, hunt for threats and respond to attacks.
Investigators have more data at their fingertips than ever before thanks to Tanium Threat Response. Backstory’s advanced analytics and VirusTotal’s database help them find even more needles within that haystack of data. Once analysts identify a lead either through a Threat Response alert or Backstory search, Backstory presents them with other potential data points that may be of interest. Quickly pivoting through these links ultimately results in a faster and more thorough investigation, which is then handed back to Tanium for industry-leading remediation speed.
How It Works
Threat Response alerts, along with endpoint process and network telemetry, are sent to Backstory through an easily-configured Tanium Connect integration. Once the data is ingested, the Backstory platform combines Tanium data with other investigative data like DNS, proxy or firewall logs to provide users with a single, searchable experience of all their data.
Chronicle is unveiling Backstory at this week’s RSA Conference in San Francisco. Full integration with Tanium Threat Response will be available in the coming weeks.
For more, please contact us at [email protected].