CA Tech Buys Xceedium To Strengthen Security Portfolio

by CXOtoday News Desk    Aug 07, 2015


IT major CA Technologies is expanding its security portfolio with the purchase of Xceedium, an identity management vendor that protects on-premise, cloud and hybrid IT environments. Terms of the agreement were not disclosed, but the transaction is expected to close this quarter, according to a company statement.

“Our digital world gives organizations tremendous opportunity; it also introduces additional regulatory demands and increased risk as bad actors penetrate our networks using stolen credentials which give them the proverbial ‘keys to the kingdom,’” said Steve Firestone, senior vice president and Security general manager, CA Technologies. “The CA and Xceedium combination will reinforce our leadership position in privileged identity management and offer customers a flexible approach to managing privileged identity compliance and risk.” 

Privileged identity management is proving to be essentially important for businesses.  It monitors access to critical corporate systems and if abused, can lead to the worst kinds of cyber attacks. 

Xceedium is based just outside of Washington, DC Virginia, also having offices in Canada’s capital city Ottawa as well as New Jersey. Along with governmental organizations, Xceedium primarily caters to customers in finance, retail and manufacturing. The company’s Xsuite enables the administration of security controls across systems, whether they reside in a traditional data center, a private cloud, on public cloud infrastructure or a combination of environments

This complements CA Privileged Identity Manager’s resource- or host-based access control approach, which focuses on controlling access to the server operating system and limits the scope for administrators—especially superusers—to modify processes, configuration files or registries. CA’s solution supplements centralized IT administrator access management with controls to minimize the risk of a privileged user unleashing malware—a common tactic used by attackers to launch breaches and avoid detection. Together, the solutions will help protect privileged accounts from compromise, provide tightly-defined access controls, and enable monitoring of privileged user activity across an organization’s entire hybrid IT infrastructure, further minimizing the risk of breaches.

“Protecting against attacks on privileged user credentials can be the difference between staying in business and going out of business. It also has become a critical element of our national defense as recent attacks on government systems reveal an escalation in attacks from cybercrime to cyberespionage,” said Glenn Hazard, Xceedium CEO.

“Stealing and exploiting privileged accounts is a central element of the kill chain in cyber attacks of all kinds, regardless of attacker origin,” said Hazard, adding that the company is excited to join forces with CA to help deliver a next generation threat mitigation suite to the market that directly addresses these devastating data breaches and attacks.