Swimlane Partnership Brings Low-Code Automation to VMware EDR

Swimlane is the newest member of the VMware Alliance Program

Today we are excited to announce that Swimlane is now a member of the VMware Alliance Program. VMware is an industry leader in server virtualization and offers one of the top endpoint protection products on the market today. While this corporate alliance is new, Swimlane has provided valuable joint solutions with Carbon Black (who was acquired by VMware) for years now. As VMware Carbon Black’s product portfolio grows, so have our integrations, and the value generated for joint customers.

Introducing low-code integrations

In other industry news, Swimlane recently announced the first cloud-based, low-code security automation platform. The Swimlane low-code automation framework means that all integrations between the Swimlane Cloud platform and VMware Carbon Black products are ultra-fast and out-of-the-box. This includes integrations with:

• VMware Carbon Black App Control

• VMware Carbon Black Cloud

• VMware Carbon Black Cloud Audit and Remediation

• VMware Carbon Black Cloud Endpoint Standard (formerly Carbon Black Defense)

• VMware Carbon Black EDR

• VMware Carbon Black EDR (on-prem)

• VMware Carbon Black Cloud Enterprise EDR

• VMware WorkspaceOne

Swimlane’s unique low-code automation approach combines integrations, like these, with industry best-practices to deliver outcomes that fulfill customer needs. No matter the outcomes you need security automation to deliver, or what your existing processes are, Swimlane Cloud can integrate and adapt to fit your needs. One of the most widely adopted solutions that Swimlane enables through integration partners like VMware Carbon Black, is speeding the time it takes to triage alerts.

Smarter, Faster and Simpler Alert Triage

Why EDR Automation Matters

Endpoint Detection and Response (EDR) tools consistently hold a seat in the top three IT security tools that are automated. There are many benefits to automating response to EDR alerts, like:

• Speed the time to respond to high fidelity alerts

• Save analyst time by reducing manual tasks and eliminating silos.

• Improves consistency of incident response processes

Here’s how it works:

Swimlane & CarbonBlack

More technically speaking, the Swimlane and VMware Carbon Black integrations can execute a plethora of different API calls and responses. This allows automation to be added to any use case that uses Swimlane and VMware Carbon Black. For example, if an alert comes in from a VMware Carbon Black product, Swimlane can automatically enrich it using your connected threat intelligence products.

This enrichment will be added directly into the case management app to save time that would normally be spent on switching products, waiting for results to load, or copying results over to the case record. From there, users are offered one click responses or fully automated responses if the enrichment meets a user specified threshold. This automation is huge for analysts and security teams, as they save time across every single alert coming in from these VMware Carbon Black products.

On the Swimlane side, our work with VMware will continue to ramp up as we get deeper into the partnership and see further requests from customers on new integrations they need. With Swimlane offering free integration development across our customer base, it will likely be very soon we start to add more of the VMware Carbon Black product line.

If you would like to learn more about the power of Swimlane and VMware Carbon Black together, check out our new listing on the VMware marketplace or our integration repository at https://apphub.swimlane.com/home or schedule a live Swimlane demo today.

*** This is a Security Bloggers Network syndicated blog from Swimlane (en-US) authored by Greg Sherman. Read the original post at: https://swimlane.com/blog/swimlane-vmware-edr/