SOAR

splunk

Phishing Emails - Less Ocean, More Aquarium

Here at Splunk, when we discuss Splunk Phantom with customers we end up talking about phishing pretty frequently because it’s something like Olivia outlined in a recent blog post, "Between Two Alerts: Phishing Emails — Don’t Get Reeled In!", customers both encounter and talk to us about all the time. It makes a lot of sense — phishing is a super common issue that almost everyone deals with ad nauseum and it’s annoying to investigate.

Siemplify Security Operations Platform Overview

Watch as we take you on a high-level tour through the world's leading independent SOAR platform and how it enables security analysts and engineers to work more efficiently and effectively. Discover how the platform provides integrations to hundreds of security and IT tools and ready-to-deploy use cases, yet goes beyond orchestration and automation to provide a complete platform to manage security opeations from end to end, from patentend threat-centric alert grouping all the way to an integrated crisis management portal.
splunk

Working in the SOC with Power Tools: Splunk and Polarity

Have you ever had to saw through a board by hand? I had to finish a partial cut by hand the other day while building a new mantle for my fireplace. It’s slow and difficult, and it often results in a lesser quality cut than one done with a power tool. It’s good exercise, though! We should all have to do it at least once so we appreciate our power tools more.

siemplify

How to Measure Effectiveness of Your Security Operations with SOAR and Business Intelligence (+Video)

Rising above the daily firefighting to actually measure the effectiveness of your security operations is easier said than done. This, in part, is because security analysts traditionally have worked across dozens of products and consoles. The enuing lack of integration has been a major pain point for SOC teams when it comes to reporting, especially when you receive random requests for data in a variety of formats.

Siemplify Business Intelligence for Security Operations

The Siemplify Security Operations Platform is the only SOAR platform with out-of-the-box business intelligence (BI), allowing you to analyze and report on your security operations from a single location. With this knowledge, you can gain accurate visibiity into the processes you need to improve. Here is how you can take full advantage of the BI capability in Siemplify.
siemplify

Key Takeaways from the 2020 Gartner Market Guide for SOAR

The much-awaited 2020 Gartner Market Guide for Security Orchestration, Automation and Response (SOAR) Solutions has arrived! As you can expect from Gartner, the report does an excellent job of outlining the latest trends and developments of the red-hot SOAR market. Here are some of the highlights of the report, along with additional commentary based on what we at Siemplify are seeing as the #1 independent SOAR provider.

siemplify

How SOAR Can Treat the Cybersecurity Skills Shortage

Raise your hand if you are aware that a (worsening) massive global skills shortage is afflicting the cybersecurity industry, leaving many organizations open to greater attack and breach risk because they lack the appropriate talent and skills to defend against their adversaries. Now that everyone’s hand is raised, we can move on to thinking about solutions.

splunk

Adaptable Incident Response With Splunk Phantom Modular Workbooks

Splunk Phantom is a security orchestration, automation and response (SOAR) technology that lets customers automate repetitive security tasks, accelerate alert triage, and improve SOC efficiency. Case management features are also built into Phantom, including “workbooks,” that allow you to codify your security standard operating procedures into reusable templates.