CrowdStrike’s 2023 Global Threat Report highlighted the rise of identity-driven attacks, revealing that stolen identities are being sold in bulk on the dark web, making identity theft attackers’ top goal. Increasingly, endpoint detection and response (EDR) security strategies are incorporating identity management platforms in the pursuit of a zero-trust framework. Cloud-based EDR is increasingly being adopted for its cost-saving, maintenance-reducing benefits. Leading vendors include Microsoft, Palo Alto Networks and Trend Micro. A critical issue is getting better visibility into every identity an endpoint has. Achieving zero-trust entails continuously monitoring and validating endpoints, available through Cisco’s SecureX, Duo and Identity Services Engine, Microsoft’s Azure Active Directory and Defender, CrowdStrike’s Falcon platform, Okta’s Identity Cloud and Palo Alto Networks’ Prisma Access. Resilient, self-healing endpoints offer greater resilience to cyber attacks, and Akamai, Ivanti, Malwarebytes, SentinelOne, Tanium and Trend Micro, among others, have developed endpoints that can autonomously self-heal. Automating patch management, which IT and security teams report currently takes up too much of their ever-increasing workload, can help by using AI and machine learning. Vendors in this space include Broadcom, CrowdStrike, SentinelOne, McAfee, Sophos, Trend Micro, VMWare Carbon Black and Cybereason.
Endpoint security in a zero-trust world – securing every device, user & application, continuously monitoring behavior & blocking threats in real time.
