.jpg)
Security teams face fragmented visibility between cloud events and endpoint user behavior, making insider threat detection slow and complex. DTEX is addressing this gap with its new integration for AWS Security Hub. The connection correlates cloud-native security findings with DTEX's endpoint behavioral telemetry and patented risk-adaptive data protection, providing a unified view to accelerate the investigation of insider risks and compromised accounts.
DTEX integrates its insider risk platform with AWS Security Hub.
The integration correlates cloud security alerts with endpoint user behavior and intent.
It provides unified identity mapping between AWS IAM principals and endpoint users.
The goal is to accelerate threat investigation and reduce false positives.
DTEX's Risk-Adaptive Enforcement Framework dynamically protects data based on user risk.
The platform is available in AWS Marketplace and builds on a prior Strategic Collaboration Agreement.
A key challenge in modern environments is the disconnect between cloud service logs and employee workstation activity. This integration directly addresses that by correlating findings from AWS Security Hub, Amazon GuardDuty, and Amazon Macie with DTEX's detailed endpoint telemetry. This gives analysts a complete timeline of user actions before, during, and after a cloud event, helping to answer critical questions about intent and method.
The integration tackles identity silos by automatically resolving AWS Identity and Access Management (IAM) principals and session identities to the corresponding canonical user in the DTEX platform. This eliminates guesswork in linking cloud activity to specific individuals. Furthermore, it enriches generic cloud alerts with DTEX's context—such as user intent, file lineage, and historical behavioral deviations—transforming basic findings into actionable intelligence for faster triage.
Beyond correlation, DTEX adds its proprietary behavioral analysis. Its User and Entity Behavioral Analytics (UEBA) detects anomalies beyond static baselines, surfacing indicators of malicious intent or compromised accounts. Its patented Risk-Adaptive Enforcement Framework dynamically infers document sensitivity based on context and applies real-time data protection controls in response to escalating user risk scores, providing proactive defense.
This integration represents a strategic deepening of DTEX's relationship with AWS, building on a previously announced Strategic Collaboration Agreement. By embedding its behavioral intelligence directly into the AWS security ecosystem, DTEX enables organizations to operationalize cloud findings more effectively. It provides a critical layer of human context, allowing security teams to move from simply detecting anomalous cloud events to quickly understanding the "who" and "why" behind them, thereby strengthening overall defense against insider threats.
About DTEX
DTEX is the leader in risk-adaptive security, unifying human, data, and AI risk through a behavioral intelligence platform. Built for enterprise scale, it detects threats early and prevents breaches. Organizations and governments worldwide rely on DTEX to protect sensitive data, accelerate innovation, and safeguard trust with privacy-by-design telemetry and adaptive controls. The DTEX platform integrates Insider Risk Management, Data Loss Prevention, User and Entity Behavior Analytics, User Activity Monitoring, and AI security into one cohesive solution.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.