SOAR

The latest News and Information on Security Orchestration, Automation and Response.

Unify and Automate TDIR Workflows with Splunk SOAR 6.3 and Splunk Enterprise Security 8.0

Nov 8, 2024 By John Dominguez In Splunk

Security teams are juggling 25+ different security tools that perform different actions across detection, investigation and response. Look up an IP here, send malware to a sandbox there, block an executable over there. What’s worse is that the vast majority of those actions are being performed manually. This approach is simply too slow against fast-moving attackers and malware, and it certainly isn’t sustainable.

Read Post

Splunk

Read more about Unify and Automate TDIR Workflows with Splunk SOAR 6.3 and Splunk Enterprise Security 8.0

How to Integrate FIM with SOAR Platforms

Nov 6, 2024 By Chris Hudson In Tripwire

File Integrity Monitoring (FIM) is a key intelligence and audit tool in an advanced security portfolio. While it is a logical component to integrate into your Security Orchestration, Automation, and Response (SOAR) tooling, it’s important to consider your approach to ensure you can gain the most benefits from it.

Read Post

Tripwire

Read more about How to Integrate FIM with SOAR Platforms

SOAR in Seconds - Playbook Building with Natively Integrated SIEM and SOAR

Nov 1, 2024 By Splunk In Splunk

In Splunk SOAR 6.3, SOAR features now come fully integrated with Splunk Enterprise Security 8.0. In this demo, see how to easily create a Splunk SOAR playbook in the context of your SIEM workflows. Playbooks and actions are now directly integrated within the Splunk Enterprise Security analyst queue. You can run playbooks and see the results without leaving the Splunk Enterprise Security interface. Both a Splunk SOAR and Splunk Enterprise Security license is required.

View Video

Splunk

Read more about SOAR in Seconds - Playbook Building with Natively Integrated SIEM and SOAR

SOAR in Seconds - Prompt-Driven Automation

Nov 1, 2024 By Splunk In Splunk

Prompt-driven automation in Splunk SOAR 6.3 lets you send real-time, secure prompts to teams outside the SOC to streamline response workflows and resolve security incidents faster. Deliver prompts through any ITOps, ChatOps or Ticketing applications.

View Video

Splunk

Read more about SOAR in Seconds - Prompt-Driven Automation

Tines named a Leader and Outperformer in the GigaOm Radar Report for SOAR

Oct 31, 2024 By Amber Langdon In Tines

We’re excited to share that Tines has been named a Leader and Outperformer in GigaOm’s Radar Report for Security Orchestration, Automation and Response (SOAR). We were the only vendor to secure scores of 4 (superior) or 5 (exceptional) in all evaluated categories, including key features, emerging technologies, and critical business criteria. Tines also earned Outperformer status based on our high rate of delivery in the last year, high release cadence, and strong roadmap for the upcoming year.

Read Post

Tines

Read more about Tines named a Leader and Outperformer in the GigaOm Radar Report for SOAR

Friday Flows Episode 40: Solving the SOAR Integration Problem with Tines

Oct 24, 2024 By Tines In Tines

A common question we get is, 'Can Tines integrate with X?' This question stems from the status quo around integration in general. Many people believe that app-based integration is the only way, and as a result, tools remain siloed. Tines co-founders Eoin Hinchy and Thomas Kinsella sought to change that, eliminating wrappers, and building Tines with an API-first mindset. In this episode of Friday Flows, host Cameron Higgs dives into some of the common stumbling blocks with SOAR integrations, and walks through multiple ways to connect Tines to your internal and external tools.

View Video

Tines

Read more about Friday Flows Episode 40: Solving the SOAR Integration Problem with Tines

Automate Investigation and Response with Splunk SOAR

Oct 22, 2024 By Splunk In Splunk

With Splunk SOAR, analysts can rise above drowning alert noise, focus on key security objectives and always stay ahead of evolving threats.

View Video

Splunk

Read more about Automate Investigation and Response with Splunk SOAR

KnowBe4 Named a Leader in the Fall 2024 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) Software

Oct 16, 2024 By Stu Sjouwerman In KnowBe4

We are excited to announce that KnowBe4 has been named a leader in the Fall 2024 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) for the PhishER platform for the 14th consecutive quarter! The latest G2 Grid Report compares Security Orchestration, Automation, and Response (SOAR) Software vendors based on user reviews, customer satisfaction, popularity and market presence. Based on 318 G2 customer reviews, KnowBe4’s PhishER platform is the top ranked SOAR software.

Read Post

KnowBe4

Read more about KnowBe4 Named a Leader in the Fall 2024 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) Software

Splunk SOAR Evolved: A Unified TDIR Approach to Automation

Sep 26, 2024 By Mandeep Singh Sandhu In Splunk

In a world where attackers are continually devising more sophisticated ways to breach enterprises, the value of automation has become critically important. To make matters worse, today's SOC is grappling with swivel chair movement across various security products, which sometimes includes a standalone automation product.

Read Post

Splunk

Read more about Splunk SOAR Evolved: A Unified TDIR Approach to Automation

Splunk SOAR Has Attained FedRAMP Moderate Authorization

Sep 3, 2024 By Bill Rowan In Splunk

Splunk is proud to announce that Splunk SOAR has received Federal Risk and Authorization Management Program (FedRAMP) Agency Authorization at the Moderate impact level. Splunk SOAR is ready to help public sector teams work smarter by automating repetitive tasks, responding to security incidents in seconds, and increasing analyst productivity and accuracy to better protect their organizations and the missions they serve.

Read Post