Skyhawk Synthesis Security Platform mentioned in the 2023 Gartner® Emerging Tech: Security — Cloud Investigation and Response Automation Offers Transformation Opportunities

This post was written by Jennifer Gill, VP Product Marketing at Skyhawk.

Skyhawk Security was recently mentioned in Gartner research, “Emerging Tech: Security – Cloud Investigation and Response Automation Offers Transformation Opportunities”, and we think that it really aligns with our vision and strategy.

According to the Gartner report, “Cloud investigation and response automation is emerging to automate the investigation and collection of digital forensics in the cloud. Product leaders must adopt transformative cloud technologies to address demand for expanding data collection, analysis, and collaboration and future business models.”

Skyhawk Synthesis recognizes that there are so many sources of security information in the cloud and have architected our product in a way to address this. First, Skyhawk Synthesis does not depend on agents. This ensures that we are not limited to information collected only by specific agents so potential breaches are not missed. Skyhawk leverages logs, and pulls them when there are updates, so no threat-actor behavior is missed. Second, we are able to leverage 3rd party data sources, like AWS Guard Duty, to backup the log data.

One of the key findings from the report mentioned was “Runtime visibility and threat detection are critical aspects of investigations into breach events and help characterize and validate attack methodologies for forensic and incident response activities.”

Skyhawk Synthesis delivers runtime observability to uncover threats in progress, so they can be stopped before they become full-blown breaches.

The report also mentions that “Threat detection capabilities are overlapping in multiple areas of security, causing customers to stretch to understand how providers fit across their product needs.”

Skyhawk looks at behaviors within the cloud, across clouds, and for assets in the cloud, and correlates this information to arrive at correct conclusion of a threat or not. If a specific sequence is determined to be a threat, the platform delivers all the evidence required to clearly show how the threat is to be resolved before it becomes a full-blown breach.

The report states: “Recommendations – Product leaders interested in emerging technologies in data forensics and incident response should: Seek to expand both runtime and threat detection capabilities to characterize threat leading to breach incidents quicker through both OEMs and partnerships.” Skyhawk recently announced integration with ChatGPT, which has allowed Skyhawk to detect threats up to 78% faster. Other integrations with cloud-native tools, like AWS GuardDuty, further improve accuracy.

Finally, please check out our whitepaper, “Three Common Use Cases for Cloud Threat Detection”, you will see how we leverage machine learning models to identify events – fast. It goes into great detail on our machine learning and how we leverage models across our entire environment to identify anomalies and issues before they become actual breaches. In this paper, you will have a thorough understanding of how Skyhawk Synthesis leverages these emerging technologies – today – to detect threats in your environment to help you achieve your ultimate security goals – to prevent cloud breaches.

You can also visit www.gartner.com to read the report, or contact us to learn more about Skyhawk Synthesis.

Gartner, Emerging Tech: Security — Cloud Investigation and Response Automation Offers Transformation Opportunities By Lawrence Pingree, Mark Wah Published 5 June 2023.

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

open popup