AppetAIzing Automation: Automated Response - Blocking IoCs with EDR

Presented by

Ryan Thomas, Senior Director, Product Management, Devo

About this talk

Many malware prevention tools allow users to upload IoCs (Indicators of Compromise) from their own investigations. This allows SOC teams to enhance security tools by adding malware indicators that were previously unknown to the tool, leveraging the SOC team’s intelligence to block new malware in the future. Learn how to automate this process to eliminate manual steps and improve security. This hands-on session will show you how to easily build playbooks with Devo SOAR to automate this process, save time, ensure consistency, and reduce risk. Ryan Thomas, Senior Director, Product Management, Devo, will discuss customer case studies and demonstrate live how to automate response to new IoCs and upload them to CrowdStrike Falcon.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (48)
Subscribers (3828)
LogicHub harnesses the power of AI and automation for superior detection & response at a fraction of the cost. From small teams with security challenges, to large teams automating SOCs, LogicHub makes advanced detection & response easy and effective for everyone.