SOAR

The latest News and Information on Security Orchestration, Automation and Response.

Splunk SOAR Feature Video: Case Management

Sep 27, 2021 By Splunk In Splunk

Case management functionality is built into Splunk SOAR. Using workbooks, you can codify your standard operating procedures into reusable templates. Splunk SOAR supports custom and industry standard workbooks such as the NIST-800 template for incident response. You can divide tasks into phases, assign tasks to team members, and document your work.

View Video

Splunk

Read more about Splunk SOAR Feature Video: Case Management

Splunk SOAR Feature Overview: Mobile

Sep 27, 2021 By Splunk In Splunk

Splunk SOAR’s orchestration, automation, response, collaboration, and case management capabilities are also available from your mobile device.

View Video

Splunk

Read more about Splunk SOAR Feature Overview: Mobile

Splunk SOAR Feature Overview: Custom Functions

Sep 27, 2021 By Splunk In Splunk

Splunk SOAR’s custom functions allow you to share custom code across playbooks while introducing complex data objects into the execution path. These aren’t just out-of-the-box playbooks, but out-of-the-box custom blocks that save you time and effort. These capabilities provide the building blocks for scaling your automation, even to those without coding capabilities.

View Video

Splunk

Read more about Splunk SOAR Feature Overview: Custom Functions

How to Choose Between XDR, SIEM, and SOAR

Sep 24, 2021 By Arctic Wolf In Arctic Wolf

Most organizations understand the critical role that cybersecurity solutions play in protecting their environment. However, the abundance of available tools that claim to serve that need are leaving them unsure they're actually protected against today's sophisticated threats.

Read Post

Arctic Wolf

Read more about How to Choose Between XDR, SIEM, and SOAR

5 reasons why security automation won't replace skilled security professionals

Sep 15, 2021 By Dario Forte In Sumo Logic

The cybersecurity landscape is constantly evolving, even more so in the past decade, with technological revolutions changing the core of the cybersecurity industry. With new emerging technologies, machine learning, security automation, and AI are slowly but surely becoming a reality in the cybersecurity world. But as the cybersecurity landscape continues and redefines the roles of security workers, which logically begs the question - what does this mean for security professionals?

Read Post

Sumo Logic

Read more about 5 reasons why security automation won't replace skilled security professionals

Uncovering the powers of Cloud SOAR's Open Integration Framework

Sep 12, 2021 By Davor Karafiloski In Sumo Logic

The speed at which security operations are processed and data is consumed is moving at a dazzling pace. This is why flexibility, customizability, and user-friendliness are deemed as core pillars of next-gen security solutions. And it is exactly what Cloud SOAR’s Open Integration Framework is all about.

Read Post

Sumo Logic

Read more about Uncovering the powers of Cloud SOAR's Open Integration Framework

Integrating MITRE ATT&CK with Cloud SOAR to optimize SecOps and Incident Response

Sep 11, 2021 By Davor Karafiloski In Sumo Logic

Today’s complex cyber threats leave no room for mediocrity. Security analysts must know who is attacking them, how the attacker gained access, what methods they used to infiltrate your systems, and what their next move might be. However, modern cyber threats leave no recognizable patterns in their behavior, making threat anticipation harder than ever. To boost their threat hunting capabilities, SOC teams must implement advanced technologies and strategic techniques.

Read Post

Sumo Logic

Read more about Integrating MITRE ATT&CK with Cloud SOAR to optimize SecOps and Incident Response

How to improve MTTD and MTTR with SOAR

Sep 10, 2021 By Davor Karafiloski In Sumo Logic

In today’s fast-paced cyber threat landscape, it is not a question of IF but WHEN an organization is going to get breached. And in order to prepare in a preemptive manner, organizations should strive to minimize their attackers’ dwell time as much as possible. This is why metrics such as MTTR (Mean time to respond) and MTTD (Mean time to detect) have grown to be highly relevant in the cybersecurity industry.

Read Post

Sumo Logic

Read more about How to improve MTTD and MTTR with SOAR

Strengthen your cloud security posture with Azure Sentinel

Sep 10, 2021 By Prasanthi Akella In Synopsys

Scalable, cloud-native solutions like Azure Sentinel help security teams streamline security operations in cloud environments. In this first of a two-part blog series, we explore the challenges businesses face when detecting and responding to cyber threats and attacks, and how these challenges can be addressed by leveraging Microsoft Azure Sentinel.

Read Post

Synopsys

Read more about Strengthen your cloud security posture with Azure Sentinel

SOAR doesn't replace humans - It makes them more efficient

Sep 9, 2021 By Davor Karafiloski In Sumo Logic

Whether it’s because we’ve watched one too many sci-fi movies, or we’re just plain scared of the potential of AI, automation, and machine learning, many suggest that the dawn of automation is going to make humans obsolete in security operations.

Read Post