Code42 and Rapid7 Partner to Deliver Enhanced Detection and Investigation of Insider Threat Events

Rhea-AI Summary

Code42 has integrated its Incydr product with Rapid7's InsightIDR, enabling security teams to detect and respond to insider threats more effectively. This integration enhances the ability to identify critical events such as data leakage and theft while reducing false positives. The collaboration aims to streamline investigations, saving analysts time and improving compliance monitoring. With 69% of security leaders having experienced breaches despite using data loss prevention (DLP) tools, this partnership addresses the need for improved insider threat management in today’s hybrid work environment.

Positive

• Integration with Rapid7's InsightIDR enhances detection of insider threats.
• Improves efficiency for SOC analysts by reducing false positives.
• Enables quicker and more contextualized investigations.
• Addresses a 69% breach rate among firms using DLP tools, indicating a need for enhanced solutions.

Negative

• None.

Today, Code42, the Insider Risk Management leader, announced it has integrated the Code42^® Incydr™ product with Rapid7 InsightIDR. Security teams using InsightIDR with the Code42 Incydr integration will have the ability to identify, prioritize and triage the most critical insider threat events – data leakage, theft or malicious attempts to conceal file exfiltration. Code42 Incydr is the first data source dedicated to insider threat events to be accessible to InsightIDR users.

This integration will improve SOC analysts’ abilities to detect insider threat events by improving the signal of risky events, reducing the noise from trusted activities, and simplifying investigations, thereby saving security teams hours of time. One-click access to the Code42 Incydr console directly from InsightIDR enables analysts to execute fast, contextualized insider threat investigations and strengthens compliance and file integrity monitoring (FIM). Incydr technology surfaces critical file modification events, contents of exfiltrated files and directly attributes users to suspicious activity in real-time. These combined capabilities inform appropriate triage through the right human and automated response actions.

“Distributed work environments and the increased use of file sharing and collaboration for legitimate work purposes are making it more difficult for security analysts to determine which file activities within their organizations are real threats to the business,” said David Beaver, global director of strategic alliances at Rapid7. “The Code42 Incydr solution is helping InsightIDR further diminish noise with advanced contextualization of data movement by employees and contractors, which will accelerate response times and better support critical investigations.”

Traditional approaches to protecting against insider threats – data loss prevention (DLP) tools – are dependent on classification and policies and are unable to keep pace with the modern-day workforce. As the borderless and hybrid workforce continues to rely on cloud-based, collaborative technologies post-pandemic, organizations must move away from strategies that block employees’ legitimate work and file sharing. Otherwise, their data could be put at risk by employees and users who modify sensitive files in an attempt to circumvent policies, misclassify valuable data or adopt unsanctioned technologies that introduce new vectors for exfiltration.

“Security leaders have indicated in our research that 69% of them have experienced a data breach even when they have had a DLP in place. It is clear that today’s organizations need a better way to identify and respond to data exposure and exfiltration happening from inside their organizations,” said Ananth Appathurai, senior vice president of strategic partnerships and ecosystem at Code42. “Our integration with InsightIDR helps analysts quickly determine what is and isn’t a threat. It combines the granular context and high-fidelity alerts that the Code42 Incydr product is known for with Rapid7’s industry-leading detection and response solution to deliver actionable insights immediately and eliminate blindspots to insider threats.”

Additional Code42 Resources

• Learn more about Code42’s technology integrations and partnerships and the Code42 integration with Rapid7.
• Take a spin through an interactive demo of Incydr in our free sandbox environment.
• Learn key steps for establishing an Insider Risk program within your organization with our Insider Risk Management Framework.

About Code42

Code42 is the Insider Risk Management leader. Native to the cloud, the Code42^® Incydr™ solution rapidly detects data loss, leak and theft as well as speeds incident response – all without lengthy deployments, complex policy management or blocking employee productivity. With Code42, security professionals can protect corporate data and reduce insider threats while fostering an open and collaborative culture for employees. Backed by security best practices and control requirements, the Code42 Incydr solution is FedRAMP authorized and can be configured for GDPR, HIPAA, PCI and other regulatory frameworks.

More than 50,000 organizations worldwide, including the most recognized brands in business and education, rely on Code42 to safeguard their ideas. Founded in 2001, the company is headquartered in Minneapolis, Minnesota, and is backed by Accel Partners, JMI Equity, NewView Capital and Split Rock Partners. Code42 was recognized by Inc. magazine as one of America’s best workplaces in 2020 and 2021. For more information, visit code42.com or join the conversation on our blog, LinkedIn, Twitter and YouTube.

About Rapid7

Rapid7 (Nasdaq: RPD) is advancing security with visibility, analytics, and automation delivered through our Insight cloud. Our solutions simplify the complex, allowing security teams to work more effectively with IT and development to reduce vulnerabilities, monitor for malicious behavior, investigate and shut down attacks, and automate routine tasks. Over 8,900 customers rely on Rapid7 technology, services, and research to improve security outcomes and securely advance their organizations. For more information, visit our website, check out our blog, or follow us on LinkedIn.

© 2021 Code42 Software, Inc. All rights reserved. Code42, the Code42 logo and Incydr are registered trademarks or trademarks of Code42 Software, Inc. in the United States and/or other countries. All other marks are properties of their respective owners.

View source version on businesswire.com: https://www.businesswire.com/news/home/20210803005362/en/

FAQ

What is the purpose of the integration between Code42 Incydr and Rapid7 InsightIDR?

The integration aims to enhance the detection and management of insider threats, such as data leakage and theft, while improving investigation efficiency for security teams.

How does the Code42 Incydr improve security responses?

Incydr enhances the signal of risky events, reduces false positives, and simplifies investigations, allowing security teams to respond more quickly and effectively.

What percentage of security leaders have faced breaches despite using DLP tools?

69% of security leaders reported experiencing data breaches even while utilizing data loss prevention tools.

Why is the integration of Code42 Incydr with Rapid7 important for modern security teams?

It helps security analysts efficiently identify real threats amidst legitimate user activities, a crucial need in today’s hybrid and cloud-based work environments.