We are excited to announce our intent to purchase WideField Safety Inc. WideField will increase the capabilities of Splunk’s Agentic SOC, by extending machine-speed autonomous responses with id and session intelligence for human, non-human, and AI-agent exercise. To make sure belief, that is evidence-backed and policy-aware.
The speedy deployment of AI brokers, autonomous workloads, and non-human identities – all working at machine velocity – launched a brand new class of safety threat. Past unauthorized entry, the problem additionally consists of approved entities taking unsafe actions within the unsuitable context, which may trigger vital injury earlier than any human workforce has an opportunity to reply. Enterprises simply weren’t ready for the safety downside that the rise of agentic AI created.
Addressing this requires a new method to safety that can detect suspicious conduct even from authenticated customers and authorised AI brokers. It calls for 3 interconnected challenges to be tackled:
- Shield brokers from the world with clear operational guardrails to make sure brokers can’t be manipulated or exploited by dangerous actors. WideField’s identity-centric capabilities implement entry controls, set up session-level guardrails, and preserve belief boundaries as AI brokers work together with knowledge, instruments, and programs.
- Shield the world from brokers, guaranteeing that the AI brokers working inside their environments are identified, accountable, and restricted to solely the entry and actions they should carry out their supposed duties.
- Detect and reply to threats at machine velocity and scale, mitigating the operational and safety impacts from misaligned or compromised brokers.
Identification, in as we speak’s agentic AI period, isn’t just targeted on who logged in however who, or what, took motion and beneath which authority, which session, and with what blast radius. Identification is now foundational to how organizations govern, safe, and reply to human exercise and non-human, similar to AI brokers, service accounts, workloads, automation identities, and so forth. Detections should translate into evidence-based choices that assist safety groups triage sooner, examine with confidence and reply safely, with human approval the place required.
WideField turns id telemetry into verified session proof that AI-driven safety workflows can safely motive over. For Agentic Safety Operations that allow autonomous responses, it’s crucial to have deterministic knowledge pipelines that correlate telemetry from endpoints, id programs, networks, and cloud in a format optimized for AI consumption. WideField sessionizes id indicators, which supplies the session-level indicators mandatory for deeper evaluation in Splunk’s Agentic SOC, permitting the SOC brokers to deduce whether or not an motion belongs to a official lively session or a doubtlessly malicious one.
WideField’s capabilities strengthen the Cisco Information Material by incorporating deep id and session intelligence, giving clients the context they should function AI safely and at scale. This proof can turn out to be a first-class sign for Spunk’s Agentic SOC, Cisco Cloud Management, and future AI governance workflows. Along with WideField we’ll develop the lens of risk investigation and response to incorporate these vital components, leading to enhancements to Splunk’s Agentic SOC capabilities with larger precision and management.
With the acquisition of WideField, Cisco’s Splunk enterprise is continuous to spend money on creating and delivering differentiated, enterprise-grade agent and agentic safety options that handle the real-world challenges dealing with as we speak’s organizations. Constructing on the latest additions of Astrix Safety and Galileo, WideField reinforces Cisco’s dedication to delivering an built-in belief layer for the agentic AI period — one which spans id, runtime conduct, visibility, and enforcement — distinguishing Cisco as a trusted accomplice for enterprises in search of to operationalize AI with confidence and management.
[Forward-Looking Statements]
This weblog put up could also be deemed to include forward-looking statements, that are topic to the protected harbor provisions of the Non-public Securities Litigation Reform Act of 1995, together with statements containing the phrases “remodel”, “will,” “plans,” “expects,” “intends,” “might,” or “continues,” or the unfavourable of those phrases or different comparable terminology, in addition to comparable expressions, or relating to the anticipated advantages to Cisco and its clients from finishing the acquisition, and plans relating to WideField personnel. Readers mustn’t place undue reliance on these forward-looking statements, as these statements are administration’s beliefs and assumptions, lots of which, by their nature, are inherently unsure, and out of doors of administration’s management. Moreover, readers are cautioned that these forward-looking statements are solely predictions and should differ materially from precise future occasions or outcomes due a wide range of components, together with, amongst different issues, the potential influence on the enterprise of WideField because of the uncertainty concerning the acquisition, the retention of workers of WideField and the power of Cisco to efficiently combine WideField and to realize anticipated advantages, enterprise and financial situations and progress tendencies, buyer markets and varied geographic areas, world financial situations and uncertainties within the geopolitical setting and different threat components set forth in Cisco’s most up-to-date reviews on Type 10-Okay and Type 10-Q. Any forward-looking statements on this weblog put up are based mostly on restricted data at the moment accessible to Cisco, which is topic to vary, and Cisco is not going to essentially replace the knowledge.
