Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

The latest News and Information on Security Orchestration, Automation and Response.

cloudflare

Integrating CrowdStrike Falcon Fusion SOAR with Cloudflare's SASE platform

Sep 15, 2025 By Ayush Kumar In Cloudflare
Security teams know all too well the grind of manual investigations and remediation. With the mass adoption of AI and increasingly automated attacks, defenders cannot afford to rely on overly manual, low priority, and complex workflows. Heavily burdensome manual response introduces delays as analysts bounce between consoles and high alert volumes, contributing to alert fatigue. Even worse, it prevents security teams from dedicating time to high-priority threats and strategic, innovative work.
Read Post

Ep 7: SOAR Loser: Does the O in SOAR stand for obsolete?

Aug 26, 2025 By Sumo Logic, Inc. In Sumo Logic
SOAR might sound like a superhero for security teams, but is it actually flying too close to the sun? In this episode, Adam and David unpack why security orchestration, automation, and response have been helpful… but might be headed for retirement, thanks to AI shaking up the game. They also dig into the headaches of managing clunky SOAR systems and why it’s time to rethink workflows and case management before you get left in the dust.
View Video
elastic

Harnessing Elastic APIs for custom AI-driven SOAR

Aug 4, 2025 By Kevin Umsted In Elastic
Security teams face a daunting mix of relentless alerts, complex investigations, and limited resources. It’s not just about detecting threats; it's also about responding quickly and efficiently. Elastic Security has long provided prebuilt capabilities for detection, investigation, and response. But what really sets Elastic apart is its open, API-first approach that gives you the power to build and automate specific workflows at your security operations center (SOC).
Read Post

Dynamic Lookup Tables with Falcon Fusion SOAR

Jul 25, 2025 By CrowdStrike In CrowdStrike
Operationalizing external data is essential for smarter and faster threat detection. Falcon Next-Gen SIEM and Fusion SOAR make it easy with new HTTP Request and Lookup File actions. Security teams can now dynamically pull data from third party sources into automated workflows without writing a line of code. These inputs are instantly converted into lookup tables that enrich detections in real time, powering precision and speed at machine scale.
View Video
splunk

SOAR & DSDL: Crossover for Agentic AI Workflow

May 13, 2025 By Huaibo Zhao In Splunk
Recently we released the Splunk App for Data Science and Deep Learning (DSDL) v5.2.0. This update introduced new features for integrating large language models (LLMs) and retrieval-augmented generation (RAG). With DSDL v5.2.0, users can easily perform LLM prompts, vector searches, RAG, and function calling directly from the app's dashboards.
Read Post
splunk

Supercharge Your SOC Investigations with Splunk SOAR 6.4

Apr 17, 2025 By Nick Hunter In Splunk
Security operations teams face increasing threats, staffing shortages, and gaps in automation and orchestration. These challenges lead to alert fatigue, slower investigations, and increased risk. Enter Splunk SOAR 6.4, designed to streamline and enhance your security operations.
Read Post
splunk

SOAR on Azure Now Available

Apr 16, 2025 By Jason Conger In Splunk
The market-leading momentum of our partnership and ongoing engineering roadmap with Microsoft continues! Splunk Security Orchestration, Automation and Response (SOAR) is now available as a native SaaS solution on Azure, enabling customers to even further improve their security posture and create greater digital resilience. Splunk SOAR on Azure acts as the efficiency engine for SOC analysts by connecting Azure services and third-party tools, automating workflows and tasks, and speeding response times.
Read Post

CrowdStrike Falcon Fusion SOAR Content Library

Apr 8, 2025 By CrowdStrike In CrowdStrike
Security teams often lose valuable time pivoting between tools to contain threats. With CrowdStrike Falcon Fusion SOAR's content library, you can streamline incident response using no-code automation to quickly build workflows and a rich content library of orchestrate with third-party integrations and pre-built actions. In this demo, see how teams can quickly integrate with popular security and IT tools and run playbooks in just a few clicks—directly from the Workbench. No context switching. No manual effort.
View Video
splunk

SOAR: Transforming Security and IT

Apr 7, 2025 By Kassandra Murphy In Splunk
When people hear “SOAR,” they often think of Security, Orchestration, Automation and Response, a powerful solution for streamlining security operations. But SOAR’s capabilities don’t stop there. By driving efficiency and automation in IT operations, infrastructure management and cloud optimization, SOAR empowers teams across the organization to work smarter and respond faster.
Read Post
Torq

How to Turn a SOAR Migration into SOC Transformation

Mar 24, 2025 By Torq In Torq
SOAR is dead-dead (too inflexible, too complex, and too limited on integrations) — but it’s not quite buried in some SOCs where it’s only hanging on because migrating can feel daunting when mission-critical workflows are tied to the system. AI-driven Hyperautomation from Torq is the SOAR killer. Our team has helped major enterprises from every industry make the switch, quickly and easily, to achieve true SOC transformation. We chatted with Mark Carosella, Sr.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.