XDR Alliance releases new open-source API specifications

The XDR Alliance today announced the release of a new set of open-source API specifications that help leading cybersecurity vendors collaborate and more easily integrate their advanced technology solutions.

As a result, end user customer organisations worldwide can rationalise their disparate and previously siloed cybersecurity solutions, enabling them to more easily operationalise broader coverage for threat detection, investigation, and response (TDIR) use cases. Customers can extract more value from their existing technology tools and avoid proprietary approaches from portfolio vendors.

On average, today’s organizations have more than 31 security tools deployed. In order for security teams to work efficiently, it’s critical that these tools integrate seamlessly within organizational workflows. Open-source APIs facilitate communication between the solutions required for the most extensive and dependable security coverage.

“Despite the hype, there is no single technology company on the market that can do it all. Robust security coverage requires integration and collaboration among the best of the best cyber solutions, easily working together without obstacles,” said XDR Alliance founder and Exabeam chief strategy officer Gorka Sadowski.

“We hear customers loud and clear. They want to minimise vendors yet avoid vendor lock-in, and want best-of-breed without paying an integration tax. We have solved this conundrum and it’s at the core of our API announcement today.”

The new open-source API specifications are a follow-up to the XDR Alliance’s open-source Common Information Model (CIM), which provides the broader cybersecurity community with a common foundation for understanding, normalising, getting deeper visibility into, and enriching data across technologies.

The APIs have been developed in collaboration with member organisations earning domain expertise across endpoint, network, cloud, identity, email security, security analytics, security log management, SIEM, and more to provide the most in-depth security coverage for organisations.

“As a leading SIEM and behavioural analytics platform provider, Exabeam connects the dots between all the disparate technologies deployed in organisations and integrates them to power TDIR use cases and outcomes for the simplest to the most demanding environments,” said Exabeam head of product application platform Seth Spiel. “These open-source API specifications enable easier, tighter, and more complete tool rationalization, and Exabeam is grateful for the collaboration of all XDR Alliance members in their support of this initiative.”

In the past year, the XDR Alliance has welcomed Banyax, Deloitte, and ReliaQuest as new members to strengthen its presence in the MSSP/MDR market.

About XDR Alliance
The XDR Alliance is a partnership of best-in-class security and information technology providers organised to help security teams easily design and implement effective threat detection, investigation, and response (TDIR) capabilities using Open XDR. The mission of the alliance is to work in collaboration to make an open approach to XDR a reality for SecOps teams and help them effectively protect their organisations from adversarial behaviour. Learn more at www.xdralliance.com.