Building on its Identity-based Security Operation Center (SOC) cloud services, Oracle has announced a series of developments that enhance the portfolio’s machine learning, artificial intelligence and contextual awareness technologies.
Oracle’s Identity SOC combines Oracle CASB Cloud Service, Oracle Identity Cloud Service, Oracle Security and Monitoring Analytics Cloud Service, and Oracle Configuration and Compliance Cloud Service into an integrated offering that delivers bi-directional controls, broad telemetry with identity context, actionable intelligence and automated remediation built around machine learning with advanced analytics.
The latest round of enhancements include new Adaptive Access capabilities into Oracle Identity Cloud Service intended for dynamic application access controls, advanced risk monitoring by leveraging machine learning engines, and the expansion of Oracle CASB Cloud Service to help support Oracle SaaS solutions with automated threat detection.
Adaptive Access
The Adaptive Access capabilities are being added in response to the increased frequency and breadth of incidents targeting both privileged and end-user credentials, The new Adaptive Access capabilities being added to Oracle Identity Cloud Service, are aimed at bringing a more sophisticated approach to access control. Adaptive Access applies dynamic risk context to associate the appropriate access controls for a given level of risk. Intuitive policy administration and standardized integrations with Oracle Identity SOC components makes Oracle Identity Cloud Service flexible to dynamically manage access risk.
Oracle CASB Cloud Service
In addition, Oracle CASB Cloud Service now utilizes both supervised and unsupervised machine-learning techniques for advanced threat detection. Its built-in user behavior analytics (UBA) engine automatically establishes historical baselines for each user and cloud service (Microsoft Office 365, Box, etc.) and continuously compares activity against these baselines to better detect anomalous and risky behavior. Upon detecting any deviations, Oracle CASB Cloud Service orchestrates incident response through a variety of options including integration with third-party ticketing and incident management systems, as well as native automated remediation.
Support for Oracle’s SaaS Apps
Oracle CASB Cloud Service is the only CASB solution to offer security monitoring and threat detection for Oracle’s SaaS applications, including Oracle Human Capital Management (HCM) Cloud, Oracle Enterprise Resource Planning (ERP) Cloud and Oracle Customer Experience (CX) Cloud Suite. With this solution, Oracle SaaS customers can now take advantage of Oracle’s machine learning technology to further strengthen their monitoring for risky user behavior and potential account or credential compromises, as well as enhance secure configuration provisioning of their SaaS environments.
In addition to Oracle SaaS applications, Oracle CASB Cloud Service has added the Slack platform to its list of supported applications that also includes Salesforce.com, Microsoft Office365, Box, Google G-Suite, ServiceNow, AWS, GitHub, and Rackspace.
Oracle CASB Cloud Service also now supports Symantec/BlueCoat secure web gateway for cloud activity visibility that is incorporated into shadow IT discovery as well as input into Oracle’s machine learning-based activity risk model. Symantec/Bluecoat adds to the list of collection targets that include Check Point, Palo Alto Networks, Fortinet and Sophos.
For more information, visit www.oracle.com/security.