Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Automation

Tines

5 common misconceptions about workflow automation

Jul 19, 2024 By Eoin Hinchy In Tines
The potential benefits of workflow automation for security teams are huge - from improved incident readiness to faster time to value, improved retention, and reduced errors, there lots of compelling reasons to adopt this technology. But there are also some popular misconceptions holding teams back from fully embracing workflow automation. In this blog post, I'll debunk some of the most common myths about workflow automation and explain why it's worth investing in for any security team.
Read Post

Friday Flows episode 28: Sending an IOC to Recorded Future for Analysis

Jul 19, 2024 By Tines In Tines
On today's episode, Michael Tolan from the Tines labs team is taking us through this enrichment workflow. Recorded Future is our long-time threat intel partner and has been the leader in that space for years now. This will give you some insight into how we work better together.
View Video
Torq

Why the World's Top MSSPs are Ditching Legacy SOAR for Hyperautomation

Jul 17, 2024 By Torq In Torq
Managed Security Service Providers (MSSPs), desperate to automate repetitive tasks, initially turned to SOAR to reduce their workload and improve threat response times. Unfortunately, legacy SOAR tools still face scalability, flexibility, and integration challenges. As the complexity and volume of cyber threats continue to grow, the limitations of legacy SOAR have become more apparent, necessitating the move towards more advanced automation technologies like Torq Hyperautomation.
Read Post
Tines

Cases: A Year in Review

Jul 17, 2024 By Hannah Roy In Tines
When we launched cases in early 2023, we saw how teams combined automation with their established processes to respond to known threats. And we realized we were missing a place for security teams to address those new or unknown threats. Enter cases, our solution to case management. Over the past year, our cases feature has become a place where teams can collaborate, track, and report on new and existing workflows.
Read Post

Friday Flows Episode 28: Use AI to create cases and act on CrowdStrike alerts

Jul 17, 2024 By Tines In Tines
In today’s Friday Flows, Conor Dunne, from the Tines Labs team, walks us through a new story using AI to create cases and act on CrowdStrike alerts. As is the case with many alerts, there’s a lot of information, but it’s not always very clear. He first uses AI to simplify & normalize the data. Once that is done & a case is created, we can also use AI to act as a security analyst and respond with one of four actions: Suspend a user account Isolate a host Block a URL Alert the security team using PagerDuty.
View Video

Friday Flows Episode 27: Disabling AWS User from Hunters Alert with Jira Prompt

Jul 17, 2024 By Tines In Tines
We're excited to bring you another workflow from the Tines library and to introduce your new Friday Flows host Cameron Higgs! The legendary Blake Coolidge is handing over the reins for a season but he'll be back on your screens before too long. In this episode, Conor Dunne walks Cameron through a workflow that pulls leads related to the Amazon Web Services (AWS) environment flagged by Hunters and searches for users with unauthorized permissions.
View Video
Torq

Global SOC Survey Reveals Hope for SecOps Teams As Post-SOAR Hyperautomation Boosts Analyst Retention and Tenure

Jul 12, 2024 By Torq In Torq
The SANS 2024 SOC Survey, a comprehensive new Torq-sponsored study, reveals that for the first time in decades, the tenure of SOC and Security Analysts is increasing. They’re choosing to remain at their posts for three-to-five years, up from an average of one-to-three years. Modern post-SOAR hyperautomation solutions are playing a significant role in alleviating the burdens these cybersecurity pros face.
Read Post
Tines

How to evaluate AI features in workflow automation platforms

Jul 8, 2024 By Eoin Hinchy In Tines
If you’ve been paying attention to the latest AI product releases or evaluating AI tools for your teams, you’ll probably have noticed how difficult it is to distinguish between hype and reality. Vendors are under an enormous amount of pressure to deliver AI features, and, as a result, many of these new tools feel rushed and fragile, and simply aren’t capable of solving important, real-world problems.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.