We are excited to announce our intent to purchase WideField Safety Inc. WideField will increase the capabilities of Splunk’s Agentic SOC, by extending machine-speed autonomous responses with identification and session intelligence for human, non-human, and AI-agent exercise. To make sure belief, that is evidence-backed and policy-aware.
The fast deployment of AI brokers, autonomous workloads, and non-human identities – all working at machine pace – launched a brand new class of safety threat. Past unauthorized entry, the problem additionally consists of licensed entities taking unsafe actions within the mistaken context, which may trigger vital injury earlier than any human staff has an opportunity to reply. Enterprises simply weren’t ready for the safety drawback that the rise of agentic AI created.
Addressing this requires a new method to safety that can detect suspicious habits even from authenticated customers and permitted AI brokers. It calls for 3 interconnected challenges to be tackled:
- Shield brokers from the world with clear operational guardrails to make sure brokers can’t be manipulated or exploited by dangerous actors. WideField’s identity-centric capabilities implement entry controls, set up session-level guardrails, and preserve belief boundaries as AI brokers work together with knowledge, instruments, and programs.
- Shield the world from brokers, making certain that the AI brokers working inside their environments are recognized, accountable, and restricted to solely the entry and actions they should carry out their meant duties.
- Detect and reply to threats at machine pace and scale, mitigating the operational and safety impacts from misaligned or compromised brokers.
Identification, in at this time’s agentic AI period, is not only targeted on who logged in however who, or what, took motion and beneath which authority, which session, and with what blast radius. Identification is now foundational to how organizations govern, safe, and reply to human exercise and non-human, resembling AI brokers, service accounts, workloads, automation identities, and so forth. Detections should translate into evidence-based selections that assist safety groups triage quicker, examine with confidence and reply safely, with human approval the place required.
WideField turns identification telemetry into verified session proof that AI-driven safety workflows can safely purpose over. For Agentic Safety Operations that allow autonomous responses, it’s crucial to have deterministic knowledge pipelines that correlate telemetry from endpoints, identification programs, networks, and cloud in a format optimized for AI consumption. WideField sessionizes identification indicators, which gives the session-level indicators crucial for deeper evaluation in Splunk’s Agentic SOC, permitting the SOC brokers to deduce whether or not an motion belongs to a respectable lively session or a probably malicious one.
WideField’s capabilities strengthen the Cisco Knowledge Material by incorporating deep identification and session intelligence, giving prospects the context they should function AI safely and at scale. This proof can develop into a first-class sign for Spunk’s Agentic SOC, Cisco Cloud Management, and future AI governance workflows. Along with WideField we are going to broaden the lens of menace investigation and response to incorporate these essential elements, leading to enhancements to Splunk’s Agentic SOC capabilities with better precision and management.
With the acquisition of WideField, Cisco’s Splunk enterprise is continuous to spend money on creating and delivering differentiated, enterprise-grade agent and agentic safety options that deal with the real-world challenges going through at this time’s organizations. Constructing on the latest additions of Astrix Safety and Galileo, WideField reinforces Cisco’s dedication to delivering an built-in belief layer for the agentic AI period — one which spans identification, runtime habits, visibility, and enforcement — distinguishing Cisco as a trusted accomplice for enterprises in search of to operationalize AI with confidence and management.
[Forward-Looking Statements]
This weblog submit could also be deemed to comprise forward-looking statements, that are topic to the protected harbor provisions of the Non-public Securities Litigation Reform Act of 1995, together with statements containing the phrases “remodel”, “will,” “plans,” “expects,” “intends,” “could,” or “continues,” or the destructive of those phrases or different comparable terminology, in addition to related expressions, or concerning the anticipated advantages to Cisco and its prospects from finishing the acquisition, and plans concerning WideField personnel. Readers mustn’t place undue reliance on these forward-looking statements, as these statements are administration’s beliefs and assumptions, lots of which, by their nature, are inherently unsure, and outdoors of administration’s management. Moreover, readers are cautioned that these forward-looking statements are solely predictions and should differ materially from precise future occasions or outcomes due quite a lot of elements, together with, amongst different issues, the potential impression on the enterprise of WideField as a result of uncertainty in regards to the acquisition, the retention of workers of WideField and the flexibility of Cisco to efficiently combine WideField and to attain anticipated advantages, enterprise and financial situations and development developments, buyer markets and numerous geographic areas, world financial situations and uncertainties within the geopolitical atmosphere and different threat elements set forth in Cisco’s most up-to-date experiences on Kind 10-Okay and Kind 10-Q. Any forward-looking statements on this weblog submit are based mostly on restricted info at the moment accessible to Cisco, which is topic to alter, and Cisco won’t essentially replace the data.
