Chuck Leaver – Novel Trends In Trends In Behavioral Analytics Identified In Gartner Report

Written By Josh Linder And Presented By Ziften CEO Chuck Leaver


The market for enterprise behavioral analytics is developing – again – to support the security use case. In the current Gartner User and Entity Behavior (UEBA) Trends Report, Ziften is delighted to be listed as a “Vendor to Watch.” We believe that our recognized relationships with risk intelligence feeds and visualization tools shows our inclusion within this research study note.

In the UEBA Market Report, Experts Eric Ahlm and Avivah Litan discuss that there is a prospective convergence in the sophisticated risk and analytics markets. The idea of UEBA – which extends user behavioral analytics to now consist of companies, business processes, and self-governing devices such as the Internet of Things – needs deep understanding and the capability to react quickly and efficiently.

At Ziften our established relationships with threat intelligence feeds and visualization tools shows our addition within this research note. Our platform offers risk detection across numerous behavior vectors, instead of taking a look at a single-threaded signature feed. With integrations to orchestration and response systems, Ziften distinctively couples signature-based and behavioral analysis, while bridging the gap from protecting the endpoint to protecting the entity. Constant tracking from the endpoint – including network flow – is critical to understanding the complete risk landscape and essential for a holistic security architecture.

We commend Gartner on determining 4 areas for security and analytic vendors to focus on: User Behavior, Host/App Habits, Network Behavior, and External Communications Habits. We are the only endpoint vendor – today – to monitor both network behavior and external communications habits. Ziften’s ZFLow ™ makes use of network telemetry to exceed the standard IPFIX flow data, and augment with Layer 4 and Layer 5 operating system and user behavior. Our risk intelligence integration – with Blue Coat, iSIGHT Partners, AlienVault and the National Vulnerability Database – is second to none. Additionally, our unique relationship with ReversingLabs supplies binary analysis straight within the Ziften administration console.

Ultimately, our continuous endpoint visibility system is instrumental in assisting to find behavioral risks that are difficult to correlate without making use of advanced analytics.

Gartner Report

6 extra innovation trend takeaways which Gartner readers must consider:

– Application of Analytics to Finding Breaches Varies
– Data Science for Analytics Technologies Still Up and Coming
– The Need for Extended Telemetry Drives Analytics Market Merging
– Convergence Between Analytics-Based Detection Suppliers and Orchestration/Response Vendors Likely
– SIEM Technologies Positioned to Be Central to Consolidation for Analytics Detection
– Advanced Behavioral Analytics Providers Extending Their Reach to Security Purchasers


Gartner does not back any vendor, product or service illustrated in its research study publications, and does not advise technology users to pick just those suppliers with the highest ratings or other designation. Gartner research publications include the viewpoints of Gartner’s research study organization and ought to not be construed as statements of fact. Gartner disclaims all warranties, expressed or suggested, with respect to this research, including any warranties of merchantability or fitness for a particular function.