The Respond Analyst Brings Robotic Decision Automation to Palo Alto Networks, Splunk and ServiceNow for Greater Scale, Efficiency and Security
Respond Software announced new integrations of its Respond Analyst solution with key vendors in the Security Orchestration, Automation and Response (SOAR) space: Palo Alto Networks Demisto, Splunk Phantom and ServiceNow Security Operations. The integrations enable customers to optimize their SOAR projects by further automating security operations to reduce attacker dwell time and detect and remediate security issues faster. Watch the “Taking the Soreness out of SOAR” webinar.
HR Technology News: Environmental Jobs Supported Through BioTalent Canada Wage Subsidy Program
Most large organizations initiate SOAR projects to automate response to security issues. These platforms enable workflow automation to enrich security alerts to assist analysts in understanding the alerts or perform automated tasks to contain or remediate security issues once they have been discovered and confirmed. The Respond Analyst augments these platforms via its automated discovery and investigation – effectively acting as the “brain” that enriches the alert, determines if it is actionable and triggers a remediation playbook in SOAR.
The Respond Analyst monitors, correlates, scopes and triages events – scaling to handle millions of events and only escalating real, well-formed, actionable incidents to SOAR, thereby enabling security engineers who program SOAR playbooks and the resulting automation to focus more on remediation and less on information gathering. Further, Respond’s automation is proven to provide, on average, more than 42 equivalent Tier 1 analysts to each customer, unlocking budget tied up in basic monitoring and triage so security teams can expand the breadth and depth of their coverage. The Respond Analyst is easy to deploy, and it does not require scripting or ongoing maintenance to provide fast and ongoing time to value.
HR Technology News: Kronos Achieves Yet Another Best-ever Top Place to Work Global Ranking
By integrating with the Respond Analyst, organizations with SOAR platforms receive these benefits:
- Enhance remediation and containment playbooks: 80% of SOAR use cases consist of upstream gathering of additional information to present to a human analyst. The Respond Analyst eliminates the need for this activity, enabling playbook programmers the time to focus on expanding workflow automation to high-value downstream tasks.
- Shorter attacker dwell time: Integrating the Respond Analyst and SOAR reduces attacker dwell time by accelerating front-end Mean Time to Detection (MTTD) and back-end Mean Time to Remediation (MTTR).
Mike Armistead, CEO and co-founder of Respond Software, said: “Organizations are spending significant time and resources writing and maintaining SOAR playbooks, scripts and rules for gathering information in an attempt to improve investigation and triage. Integrating the Respond Analyst into SOAR solutions gives a high-fidelity trigger for those playbooks through software, not people.”
HR Technology News: SAIC Names Michelle A. O’Hara as Chief Human Resources Officer