3 Security Automation Capabilities You Won’t See at Black Hat

Logo
Presented by

Jay Spann, Security Automation Evangelist, Swimlane

About this talk

Attending Black Hat? Whether you are or not, you won’t want to miss this demonstration of some essential security automation capabilities that every SecOps team today needs. More than just security orchestration, automation and response (SOAR), security operations teams must embrace codified best-practices and real-time collaboration that is built to track, manage and respond to threats with executive-level metrics and reporting. In this session you will quickly realize the power of security automation as a “system of record” for security operations. In this demo, you will see several cutting-edge capabilities that include: - Reporting and dashboarding that extends beyond the SOC to provide instantaneous feedback on critical metrics for SOC and non-SOC personnel. - As data continues to change in an incident, your severity, classification and other values may need to change too. Continuous workflow evaluation ensures the record is consistently re-evaluated and the updated record executes additional tasks and workflows needed based on the new values. - A Collaboration Hub that can leverage common communication channels within your organization to collaborate with security team business partners to break down cross-organizational communication silos. Join us for this security automation insight you won’t see at Black Hat.

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (28)
Subscribers (2375)
Swimlane’s SOAR platform helps organizations manage the growing volume of alerts more efficiently by automating time-consuming incident response processes. The solution collects security alert data from virtually any security platform with minimal effort and then automatically responds to alerts using automated workflows and playbooks.