Skip to content


Code42 Incydr™ Ecosystem

Architected for the integrated and collaborative enterprise

A growing network of partnerships and integrations

The Code42 Incydr Ecosystem is a growing network of strategic partnerships and technology integrations that enable organizations to speed Insider Risk detection and response. Our direct integrations with corporate cloud, email and SaaS applications power Incydr’s risk prioritization and signal capabilities, which can then be used to automate or streamline incident response processes related to insider data risk.

Incydr integrates with Microsoft Azure to provision additional user attributes including department, manager, and employment type to enhance monitoring of users more likely to put data at risk, such as contractors or departing employees.

Learn More

Incydr integrates with corporate cloud services including Box to detect when employees use the service to share files from computers and cloud applications.

Learn More

Incydr integrates with Palo Alto Networks Cortex XSOAR to accelerate insider threat incident response and automate remediation procedures for potential data exfiltration across computers, email, cloud and SaaS apps.

Learn More

Incydr integrates with CyberArk via no-code automated integrations, powered by Workato, that adds context to Incydr risk detection lenses and triggers privileged access controls to contain data leaks involving privileged users.

Learn More

Incydr integrates with Exabeam to enable security teams to quickly detect, investigate and respond to data exfiltration caused by departing and remote employees, as well as compromised, negligent, or malicious insiders.

Learn More

Incydr integrates with corporate email services including Gmail to detect potential data exfiltration, including when file attachments are sent to untrusted recipients.

Learn More

Incydr integrates with corporate cloud services including Google Drive to detect when employees use the service to share files from computers and cloud applications.

Learn More

Incydr Context Flows enhance Incydr’s signal by ingesting user attributes, such as employment milestones, departure or elevated access credentials from corporate IAM, PAM and HCM systems.

Learn More

Incydr Flows are no-code automated integrations, powered by Workato, that add context and accelerate response to Insider Risk. Response and Context Flows make it easy to automate response controls that are in alignment with your risk tolerance.

Learn More

Maximize the value of your existing security tech stack

Code42’s open API allows security teams to create custom reports, perform automated actions or integrate with existing systems within your organization to establish or strengthen your Insider Risk program.

Contact Us

Developer Portal

Develop your own REST-based application leveraging the Code42 API for automation and scripting. Find resources to assist you in the Developer Portal.

Integrate with any SIEM

Correlate and analyze Code42 Insider Risk data in any SIEM via a command-line interface integration.

Streamline Insider Risk workflows

Build custom integrations into HR or other ticketing systems leveraging py42 commands accessible in Github.

Access to security services

We can provide consulting and technical resources to guide you through the integration process and enrich the value of your security stack.

Hear what others have to say

Gartner Peer Insights
Incydr sees all

Published 9/21/21

“The ability to see where all our data is going is invaluable. Tracking where our documents go is an eye opener. Web-based emails, social media, zip files, renaming of files to obscure contents. This was exactly what we needed and since this is tied into our desktop backup system it was a no brainer to deploy this product.”

Read Full Review
Easy to implement, configure, and use!

Published 6/3/21

“Service and support has been excellent. Knowledge-base documentation is well written and clear. It’s very easy to find what I need quickly. Information is presented in the dashboard in a very clear way, making things super easy to understand. Professional services has been very helpful.”

Read Full Review
One of the best tools I have experienced

Published 6/22/21

“The tool gives amazing monitoring to the endpoint and tracks the activity related to the file movement. The Investigate and filter part is really impressive and useful to triage the alert further and take the required actions based on the activity. The most Advanced Feature is downloading the file in real-time and making solid evidence to prove yourself.”

Read Full Review
Read All Reviews

GARTNER is a registered trademark and service mark, and PEER INSIGHTS, Gartner Peer Insights Logo, and the Gartner Peer Insights Customer First badge are trademarks and service marks, of Gartner, Inc. and/or its affiliates in the U.S. and internationally and are used herein with permission. All rights reserved. Gartner Peer Insights content consists of the opinions of individual end users based on their own experiences, and should not be construed as statements of fact, nor do they represent the views of Gartner or its affiliates. Gartner does not endorse any vendor, product or service depicted in this content nor makes any warranties, expressed or implied, with respect to this content, about its accuracy or completeness, including any warranties of merchantability or fitness for a particular purpose. The Gartner Peer Insights Customer First program constitutes an organization’s commitment to solicit reviews from its customers using programmatic sourcing strategies and best practices. They neither represent the views of, nor constitute an endorsement by, Gartner or its affiliates.