We are excited to announce our intent to purchase WideField Safety Inc. WideField will enhance the capabilities of Splunk’s Agentic SOC, by extending machine-speed autonomous responses with identification and session intelligence for human, non-human, and AI-agent exercise. To make sure belief, that is evidence-backed and policy-aware.
The fast deployment of AI brokers, autonomous workloads, and non-human identities – all working at machine velocity – launched a brand new class of safety threat. Past unauthorized entry, the problem additionally consists of licensed entities taking unsafe actions within the incorrect context, which may trigger vital injury earlier than any human crew has an opportunity to reply. Enterprises simply weren’t ready for the safety downside that the rise of agentic AI created.
Addressing this requires a new strategy to safety that can detect suspicious habits even from authenticated customers and authorized AI brokers. It calls for 3 interconnected challenges to be tackled:
- Shield brokers from the world with clear operational guardrails to make sure brokers can’t be manipulated or exploited by dangerous actors. WideField’s identity-centric capabilities implement entry controls, set up session-level guardrails, and preserve belief boundaries as AI brokers work together with information, instruments, and methods.
- Shield the world from brokers, guaranteeing that the AI brokers working inside their environments are identified, accountable, and restricted to solely the entry and actions they should carry out their supposed duties.
- Detect and reply to threats at machine velocity and scale, mitigating the operational and safety impacts from misaligned or compromised brokers.
Id, in as we speak’s agentic AI period, isn’t just targeted on who logged in however who, or what, took motion and below which authority, which session, and with what blast radius. Id is now foundational to how organizations govern, safe, and reply to human exercise and non-human, resembling AI brokers, service accounts, workloads, automation identities, and so forth. Detections should translate into evidence-based selections that assist safety groups triage sooner, examine with confidence and reply safely, with human approval the place required.
WideField turns identification telemetry into verified session proof that AI-driven safety workflows can safely cause over. For Agentic Safety Operations that allow autonomous responses, it’s crucial to have deterministic information pipelines that correlate telemetry from endpoints, identification methods, networks, and cloud in a format optimized for AI consumption. WideField sessionizes identification alerts, which supplies the session-level alerts crucial for deeper evaluation in Splunk’s Agentic SOC, permitting the SOC brokers to deduce whether or not an motion belongs to a authentic energetic session or a doubtlessly malicious one.
WideField’s capabilities strengthen the Cisco Knowledge Cloth by incorporating deep identification and session intelligence, giving prospects the context they should function AI safely and at scale. This proof can develop into a first-class sign for Spunk’s Agentic SOC, Cisco Cloud Management, and future AI governance workflows. Along with WideField we are going to broaden the lens of risk investigation and response to incorporate these essential components, leading to enhancements to Splunk’s Agentic SOC capabilities with higher precision and management.
With the acquisition of WideField, Cisco’s Splunk enterprise is constant to spend money on growing and delivering differentiated, enterprise-grade agent and agentic safety options that deal with the real-world challenges dealing with as we speak’s organizations. Constructing on the current additions of Astrix Safety and Galileo, WideField reinforces Cisco’s dedication to delivering an built-in belief layer for the agentic AI period — one which spans identification, runtime habits, visibility, and enforcement — distinguishing Cisco as a trusted associate for enterprises searching for to operationalize AI with confidence and management.
[Forward-Looking Statements]
This weblog publish could also be deemed to comprise forward-looking statements, that are topic to the secure harbor provisions of the Personal Securities Litigation Reform Act of 1995, together with statements containing the phrases “rework”, “will,” “plans,” “expects,” “intends,” “might,” or “continues,” or the damaging of those phrases or different comparable terminology, in addition to comparable expressions, or concerning the anticipated advantages to Cisco and its prospects from finishing the acquisition, and plans concerning WideField personnel. Readers mustn’t place undue reliance on these forward-looking statements, as these statements are administration’s beliefs and assumptions, a lot of which, by their nature, are inherently unsure, and out of doors of administration’s management. Moreover, readers are cautioned that these forward-looking statements are solely predictions and should differ materially from precise future occasions or outcomes due a wide range of components, together with, amongst different issues, the potential affect on the enterprise of WideField because of the uncertainty in regards to the acquisition, the retention of staff of WideField and the flexibility of Cisco to efficiently combine WideField and to attain anticipated advantages, enterprise and financial circumstances and progress developments, buyer markets and varied geographic areas, international financial circumstances and uncertainties within the geopolitical surroundings and different threat components set forth in Cisco’s most up-to-date studies on Kind 10-Okay and Kind 10-Q. Any forward-looking statements on this weblog publish are based mostly on restricted data at the moment obtainable to Cisco, which is topic to vary, and Cisco won’t essentially replace the data.