Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

SOAR

The latest News and Information on Security Orchestration, Automation and Response.

Sponsored Post
kondukto

A Look into Modern Security Orchestration

Jan 29, 2024 By Can Taylan Bilgin In Kondukto
Have you ever thought there could be a smarter way to handle your organization's app security? In this blog post we're going to provide an overview of modern Security Orchestration, show how it fits perfectly with DevSecOps and how to make sure that security is part of your software development lifecycle right from the start.
Read Post
splunk

Introducing Our New SOAR Integrations: Why Panorama and FortiManager Users Should Be Excited

Dec 15, 2023 By Coty Sugg In Splunk
Hello there, cybersecurity aficionados! We're thrilled to unveil our latest and greatest Splunk SOAR apps, tailored for the giants of the firewall space: Panorama and FortiManager. These sophisticated apps help us deliver the most compelling automation for our community, no matter the tools they have deployed. Much like our playbooks packs from earlier this year, these integrations are another great way for users to align their incident response approach to MITRE D3FEND.
Read Post
splunk

Reduce Operational Complexity with Splunk SOAR Logic Loops

Dec 8, 2023 By Senthil Nithiyananthan In Splunk
Last week, we released Splunk SOAR 6.2 (Security Orchestration Automation and Response) and in the accompanying announcement blog, we highlighted some of the new key features found in this release. Today, we want to take a more in-depth look at one of those features, logic loops, and show how they make it easier than ever for security engineers and analysts to save time and cut down on repetitive manual tasks.
Read Post

Splunk SOAR Logic Loops Demo

Dec 7, 2023 By Splunk In Splunk
Logic Loops are a feature in Splunk SOAR that allow users to reduce the operational complexity of building and maintaining playbooks that require repeatable looping functionalities without having to write their own custom code. This iterative function allows users to automatically retry playbook actions if they fail, or continue with the rest of the playbook when the action succeeds. This function can be applied to use cases like sandbox engines for malicious URL quarantine and remediation as well as forensic investigation workflows.
View Video
splunk

SOAR: Security Orchestration, Automation & Response

Dec 6, 2023 By Chrissy Kidd In Splunk
An important piece of cybersecurity, SOAR solutions provide a single location for you to observe, understand, and decide how to respond to security incidents. Short for security orchestration, automation and response, true SOAR solutions are operational tools that can be very flexible and powerful, useful even beyond security use cases. In this article, we’ll explore what SOAR is, why it’s important for enterprises and how you can get the most value from your SOAR solution.
Read Post

Tech Talk Webinar - Elastic SIEM + Tines SOAR

Nov 15, 2023 By Tines In Tines
Together, Tines and Elastic provide security teams with the information they need to investigate alerts and make business-critical decisions all in one place — saving valuable time and resources. By combining detection and alerting delivered by Elastic Security with Tines’ automation, SOC teams can support continuous monitoring, threat detection and prevention, alert enrichment, incident response and more.
View Video
splunk

SOARing High for M-21-31

Oct 30, 2023 By Derrick Lawson In Splunk
As most folks who work in the US Federal Civilian space are aware, we are now past the August 2023 date to meet Enterprise Logging Level 3 (EL3) in support of the M-21-31 OMB Mandate. As part of the Advanced Requirements in EL3, Logging Orchestration, Automation, & Response enters Finalizing Implementation, meaning agencies should be completing and rolling out automated incident response playbooks.
Read Post

Splunk SOAR Playbooks - Dynamic Identifier Reputation Analysis (Part 2)

Oct 27, 2023 By Splunk In Splunk
The Dynamic Identifier Reputation Analysis playbook is an essential tool for any security operations center (SOC) team looking for a comprehensive view of their environment’s threat landscape. By leveraging MITRE DEFEND's approach for dynamic identifier reputation analysis, SOC teams can quickly identify potential threats and vulnerabilities and take proactive steps towards mitigating risk before it causes damage.
View Video
knowbe4

KnowBe4 Named a Leader in the Fall 2023 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR)

Oct 13, 2023 By Stu Sjouwerman In KnowBe4

We are excited to announce that KnowBe4 has been named a leader in the Fall 2023 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) for the PhishER platform for the tenth consecutive quarter! The latest G2 Grid Report compares Security Orchestration, Automation, and Response (SOAR) Software vendors based on user reviews, customer satisfaction, popularity and market presence. Based on 228 G2 customer reviews, KnowBe4’s PhishER platform is the top ranked SOAR software.

Read Post
Arctic Wolf

Arctic Wolf + Revelstoke: SOARing to New Heights Together

Oct 10, 2023 By Dan Schiappa In Arctic Wolf
Security orchestration, automation, and response (SOAR) has an opportunity to be a game changer in how we tackle cyber risk, but there is a significant disconnect between the promises made by existing SOAR platforms and how organizations are able to realize their real-world operational and cost-saving efficiencies. All those automations that promise to eliminate late hours working on mundane stuff. All the orchestrations that promise to get things done faster.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.