Introducing the XDR Alliance!

XDR Alliance — why?

Why did Exabeam drive the creation of this alliance with key security technology providers Armis, Expel, ExtraHop, Google Cloud Security, Mimecast, Netskope, and SentinelOne? Simple, it’s because:

  • We cannot lose the battle to the adversaries, and we need to offer organizations protection against all kinds of threats, from the most trivial to the most sophisticated.
  • Organizations need to assume breach, and prevention is important, but not enough.
  • Emerging security information and event management (SIEM) tools are amazingly powerful but can feel overwhelming when the requirement is only focused on detection and response (and investigation and threat hunting).
  • Detecting and responding to threats using a single-vendor strategy is risky, regardless of how big they are and regardless of how great a portfolio they have.
  • Collectively and collaboratively is the only way to deliver on XDR’s promise of easier threat detection, investigation and response (TDIR) across the extended set of technologies already deployed in organizations.
  • Leaving the integration and content development burden to the customer is too big an ask. It places too much responsibility on teams that are already overwhelmed and understaffed. Vendors need to step up to the plate and do the bulk of the heavy lifting.

XDR Alliance — what?

The XDR Alliance is a group of security technology providers who have organized to help customers more easily define, implement, and operate effective threat detection, investigation, and response (TDIR) programs and technology stacks.

XDR Alliance — how?

The XDR Alliance is founded on the acknowledgement that:

  • Current approaches to SOC are not scaling and will keep failing.
  • Tool integration and content development for most use cases is very hard for all but the most mature organizations, and should really be driven by vendors.
  • The vendor community is very fragmented, yet vendors are willing and able to come together when duty calls.



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Gorka Sadowski

Gorka Sadowski

Cybersecurity expert and Chief Strategy Officer at Exabeam. Former Gartner analyst driving SIEM and SOC research and builder of the Splunk security ecosystem.