SOAR

Phishing Emails - Less Ocean, More Aquarium

Oct 28, 2020 By Brandon Tansey In Splunk

Here at Splunk, when we discuss Splunk Phantom with customers we end up talking about phishing pretty frequently because it’s something like Olivia outlined in a recent blog post, "Between Two Alerts: Phishing Emails — Don’t Get Reeled In!", customers both encounter and talk to us about all the time. It makes a lot of sense — phishing is a super common issue that almost everyone deals with ad nauseum and it’s annoying to investigate.

Splunk

Read more about Phishing Emails - Less Ocean, More Aquarium

Siemplify Security Operations Platform Overview

Oct 14, 2020 By Siemplify In Siemplify

Watch as we take you on a high-level tour through the world's leading independent SOAR platform and how it enables security analysts and engineers to work more efficiently and effectively. Discover how the platform provides integrations to hundreds of security and IT tools and ready-to-deploy use cases, yet goes beyond orchestration and automation to provide a complete platform to manage security opeations from end to end, from patentend threat-centric alert grouping all the way to an integrated crisis management portal.

Siemplify

Read more about Siemplify Security Operations Platform Overview

Working in the SOC with Power Tools: Splunk and Polarity

Oct 1, 2020 By Tim Frazier In Splunk

Have you ever had to saw through a board by hand? I had to finish a partial cut by hand the other day while building a new mantle for my fireplace. It’s slow and difficult, and it often results in a lesser quality cut than one done with a power tool. It’s good exercise, though! We should all have to do it at least once so we appreciate our power tools more.

Splunk

Read more about Working in the SOC with Power Tools: Splunk and Polarity

How to Measure Effectiveness of Your Security Operations with SOAR and Business Intelligence (+Video)

Sep 30, 2020 By Dane Disimino In Siemplify

Rising above the daily firefighting to actually measure the effectiveness of your security operations is easier said than done. This, in part, is because security analysts traditionally have worked across dozens of products and consoles. The enuing lack of integration has been a major pain point for SOC teams when it comes to reporting, especially when you receive random requests for data in a variety of formats.

Siemplify

Read more about How to Measure Effectiveness of Your Security Operations with SOAR and Business Intelligence (+Video)

How to Work and Monitor Siemplify Agent

Sep 28, 2020 By Siemplify In Siemplify

The remote agent enables a secured connection between Siemplify and your remote environments, allowing you to either pull alerts from the environments or push actions to be performed there.

Siemplify

Read more about How to Work and Monitor Siemplify Agent

Siemplify Business Intelligence for Security Operations

Sep 28, 2020 By Siemplify In Siemplify

The Siemplify Security Operations Platform is the only SOAR platform with out-of-the-box business intelligence (BI), allowing you to analyze and report on your security operations from a single location. With this knowledge, you can gain accurate visibiity into the processes you need to improve. Here is how you can take full advantage of the BI capability in Siemplify.

Siemplify

Read more about Siemplify Business Intelligence for Security Operations

Key Takeaways from the 2020 Gartner Market Guide for SOAR

Sep 23, 2020 By Nimmy Reichenberg In Siemplify

The much-awaited 2020 Gartner Market Guide for Security Orchestration, Automation and Response (SOAR) Solutions has arrived! As you can expect from Gartner, the report does an excellent job of outlining the latest trends and developments of the red-hot SOAR market. Here are some of the highlights of the report, along with additional commentary based on what we at Siemplify are seeing as the #1 independent SOAR provider.

Siemplify

Read more about Key Takeaways from the 2020 Gartner Market Guide for SOAR

How SOAR Can Treat the Cybersecurity Skills Shortage

Sep 15, 2020 By Dan Kaplan In Siemplify

Raise your hand if you are aware that a (worsening) massive global skills shortage is afflicting the cybersecurity industry, leaving many organizations open to greater attack and breach risk because they lack the appropriate talent and skills to defend against their adversaries. Now that everyone’s hand is raised, we can move on to thinking about solutions.

Siemplify

Read more about How SOAR Can Treat the Cybersecurity Skills Shortage

Adaptable Incident Response With Splunk Phantom Modular Workbooks

Sep 14, 2020 By Sam Hays In Splunk

Splunk Phantom is a security orchestration, automation and response (SOAR) technology that lets customers automate repetitive security tasks, accelerate alert triage, and improve SOC efficiency. Case management features are also built into Phantom, including “workbooks,” that allow you to codify your security standard operating procedures into reusable templates.

Splunk

Read more about Adaptable Incident Response With Splunk Phantom Modular Workbooks

How to Manage Multi Tenants With SOAR

Sep 12, 2020 By Siemplify In Siemplify

The Siemplify SOAR platform acts as a cloud-native security operations workbench, serving as the central, multi-tenant hub for day-to-day MSSP SOC activities. Here is how our multi-tenancy feature works.