Absolute has announced new security functionality to the Absolute DDS Customer Centre. In our latest update, we have extended IT oversight to include the status of Microsoft System Center Configuration Manager (SCCM) on each device. We have also made it possible to integrate Absolute alerts with Security Information and Event Management (SIEM) solutions. With our endpoint security SIEM integration, our customers will be able to access a more complete picture of their aggregated security data.
Many organizations rely on Microsoft SCCM to manage the deployment and security of devices and applications. If Microsoft SCCM is not properly working on an endpoint, IT can no longer manage the device. Leveraging Persistence by Absolute, IT can monitor devices on or off network and receive an alert if SCCM is corrupted or removed. This early notification allows administrators to take corrective action so the device can be promptly returned to management.
The new SIEM connector allows customers to consolidate security data within their SIEM environment. If an Absolute security alert is triggered, the event details will flow into the customer’s chosen SIEM application. The incident can then be examined in the context of the broader security landscape.
SIEM integration further supports our customers’ layered approach to endpoint security, which covers as many eventualities as possible. Absolute also supports direct and enhanced integrations with a growing number of leading SIEM partners, including RSA Analytics, HPE ArcSight and Splunk.
With Absolute monitoring complementary security applications such as encryption, anti-malware, and SCCM, this integration into SIEM provides additional insights to improve overall security. Get more details on the Absolute SIEM connector on our website or discover the useful things you can do with Absolute DDS.
Both new security features are available today through the latest Customer Center 5.24 update.