We are excited to announce our intent to purchase WideField Safety Inc. WideField will enhance the capabilities of Splunk’s Agentic SOC, by extending machine-speed autonomous responses with id and session intelligence for human, non-human, and AI-agent exercise. To make sure belief, that is evidence-backed and policy-aware.
The speedy deployment of AI brokers, autonomous workloads, and non-human identities – all working at machine velocity – launched a brand new class of safety threat. Past unauthorized entry, the problem additionally consists of licensed entities taking unsafe actions within the fallacious context, which may trigger vital harm earlier than any human workforce has an opportunity to reply. Enterprises simply weren’t ready for the safety drawback that the rise of agentic AI created.
Addressing this requires a new strategy to safety that can detect suspicious habits even from authenticated customers and authorized AI brokers. It calls for 3 interconnected challenges to be tackled:
- Shield brokers from the world with clear operational guardrails to make sure brokers can’t be manipulated or exploited by unhealthy actors. WideField’s identity-centric capabilities implement entry controls, set up session-level guardrails, and keep belief boundaries as AI brokers work together with information, instruments, and methods.
- Shield the world from brokers, guaranteeing that the AI brokers working inside their environments are recognized, accountable, and restricted to solely the entry and actions they should carry out their meant duties.
- Detect and reply to threats at machine velocity and scale, mitigating the operational and safety impacts from misaligned or compromised brokers.
Id, in as we speak’s agentic AI period, isn’t just targeted on who logged in however who, or what, took motion and beneath which authority, which session, and with what blast radius. Id is now foundational to how organizations govern, safe, and reply to human exercise and non-human, similar to AI brokers, service accounts, workloads, automation identities, and so forth. Detections should translate into evidence-based choices that assist safety groups triage sooner, examine with confidence and reply safely, with human approval the place required.
WideField turns id telemetry into verified session proof that AI-driven safety workflows can safely motive over. For Agentic Safety Operations that allow autonomous responses, it’s crucial to have deterministic information pipelines that correlate telemetry from endpoints, id methods, networks, and cloud in a format optimized for AI consumption. WideField sessionizes id alerts, which gives the session-level alerts crucial for deeper evaluation in Splunk’s Agentic SOC, permitting the SOC brokers to deduce whether or not an motion belongs to a respectable lively session or a doubtlessly malicious one.
WideField’s capabilities strengthen the Cisco Knowledge Cloth by incorporating deep id and session intelligence, giving prospects the context they should function AI safely and at scale. This proof can develop into a first-class sign for Spunk’s Agentic SOC, Cisco Cloud Management, and future AI governance workflows. Along with WideField we’ll develop the lens of menace investigation and response to incorporate these crucial elements, leading to enhancements to Splunk’s Agentic SOC capabilities with better precision and management.
With the acquisition of WideField, Cisco’s Splunk enterprise is constant to spend money on growing and delivering differentiated, enterprise-grade agent and agentic safety options that deal with the real-world challenges going through as we speak’s organizations. Constructing on the current additions of Astrix Safety and Galileo, WideField reinforces Cisco’s dedication to delivering an built-in belief layer for the agentic AI period — one which spans id, runtime habits, visibility, and enforcement — distinguishing Cisco as a trusted associate for enterprises in search of to operationalize AI with confidence and management.
[Forward-Looking Statements]
This weblog put up could also be deemed to include forward-looking statements, that are topic to the protected harbor provisions of the Personal Securities Litigation Reform Act of 1995, together with statements containing the phrases “remodel”, “will,” “plans,” “expects,” “intends,” “might,” or “continues,” or the detrimental of those phrases or different comparable terminology, in addition to comparable expressions, or relating to the anticipated advantages to Cisco and its prospects from finishing the acquisition, and plans relating to WideField personnel. Readers shouldn’t place undue reliance on these forward-looking statements, as these statements are administration’s beliefs and assumptions, a lot of which, by their nature, are inherently unsure, and out of doors of administration’s management. Moreover, readers are cautioned that these forward-looking statements are solely predictions and will differ materially from precise future occasions or outcomes due a wide range of elements, together with, amongst different issues, the potential influence on the enterprise of WideField because of the uncertainty concerning the acquisition, the retention of staff of WideField and the flexibility of Cisco to efficiently combine WideField and to attain anticipated advantages, enterprise and financial situations and progress traits, buyer markets and varied geographic areas, world financial situations and uncertainties within the geopolitical atmosphere and different threat elements set forth in Cisco’s most up-to-date experiences on Kind 10-Okay and Kind 10-Q. Any forward-looking statements on this weblog put up are based mostly on restricted data at the moment out there to Cisco, which is topic to vary, and Cisco won’t essentially replace the knowledge.
