AlienApps
Extending threat detection and response through security orchestration and incident response automation.
Overview
Extend your threat detection and response capabilities
Today’s constantly evolving threat landscape traps organizations in a “threat cycle.” As new threats emerge, new security technologies are needed to address them. Another threat emerges, another technology follows.
Stuck in this continuous threat cycle, organizations tend to amass disparate security point solutions. This leads to an IT security environment that is siloed, complex to integrate, and difficult to manage.
AlienApps™ break the threat cycle by extending the threat detection and security orchestration capabilities of the USM platform to other security and productivity tools that your IT team uses, providing a consolidated approach to threat detection and response.
With AlienApps, you can monitor more of your security posture directly within the USM platform. AlienApps also enable you to automate and orchestrate response actions when threats are detected, greatly simplifying and accelerating the threat detection and incident response processes.
Benefits
How AlienApps benefit you
Centralize your data
Collect critical data from your on-premises, cloud infrastructure, and SaaS applications, making it easier and more efficient to respond to threats.
Respond to threats faster
Communicate important security information back to your other IT and security tools, creating a closed loop threat detection and response process.
Data enrichment and analytics
Enrich your data to help you capture, analyze, visualize, and respond to threats, improving your visibility into the latest threats and reducing the signal to noise ratio for better prioritization of threats which demand immediate attention.
Highly extensible architecture
Gain access to new security technologies easily to keep you ahead of the changing threat landscape without bringing on new security point products, solving the threat cycle dilemma and significantly improving your threat detection and response capabilities.
Orchestrate and automate
Orchestrate incident investigation and response activities when threats are detected, greatly simplifying and accelerating the threat detection and incident response processes.
Stay on top of the latest threats
Gain insights into trends and identify anomalies using the latest threat intelligence from AT&T Alien Labs.
AlienApps
Advanced AlienApps
In addition to the standard AlienApps functionality, Advanced AlienApps offer even more robust automation and orchestration capabilities. Advanced AlienApps collect and enrich log data, perform threat analysis, and provide workflow that coordinates response actions with third-party applications to provide security orchestration, allowing your IT team to take immediate action directly from the USM platform.
Related products
USM Anywhere
Threat detection, incident response, and compliance in a single platform
AT&T Managed Threat Detection and Response
24X7 security monitoring from AT&T Cybersecurity
XDR for MSSPs
Create a managed security service offering with AT&T USM Anywhere and AT&T Endpoint Security with SentinelOne.
FAQ
What is the difference between an AlienApp and an Advanced AlienApp?
AlienApps translate raw log data into normalized events for analysis by USM Anywhere, while Advanced Alienapps do much more, including collection and enrichment of log data, performing threat analysis, and providing workflow that coordinates response actions with the infrastructure and third-party applications to provide security orchestration. In addition, each Advanced AlienApp has a built-in dashboard in USM Anywhere.
How do I request a new AlienApp?
You can submit a request for a new AlienApp here.
Are the Advanced AlienApps available in every edition of USM Anywhere?
Some of the Advanced AlienApps are only available in the Standard and Premium editions of USM Anywhere. To learn more about which Advanced AlienApps are included in each edition, visit our documentation page.
Get a quote
We're here to help! Complete the form and we will be in touch soon.