Attivo Networks, an award-winning leader in deception for cybersecurity threat detection, announced an integration with IBM Security Resilient, the company’s security orchestration, automation and response (SOAR) platform. This integration enables organizations to respond rapidly to detected threats by reducing false-positive alerts and excessive manual intervention. The Attivo Networks ThreatDefend BOTsink solution integration for Resilient configures quickly to give organizations the ability to combine early and accurate detection with automated security orchestration.
Read More: SalesTechStar Interview With Tricia Bonora, Vice President, Channels At OPAQ
“Once attackers bypass existing prevention mechanisms, they have the freedom to move around and can remain undetected for extended periods. Organizations need solutions that excel at finding in-network threats without relying on known signatures or attack patterns”
The BOTsink solution is available to the security community through IBM Security App Exchange, a marketplace where developers across the industry can share applications based on IBM Security technologies. As threats are evolving faster than ever, collaborative development amongst the security industry helps organizations adapt quickly and speed innovation in the fight against cybercrime.
Read More: Frost & Sullivan Radar Ranks Wolters Kluwer As A Top 20 AI Innovation Leader In Healthcare IT
Attivo BOTSink solution integrates with Resilient, which accelerates incident response with its orchestration and automation capabilities, to investigate and mitigate threats. Leveraging Resilient’s open application programming interfaces (APIs), Attivo BOTSink for Resilient allows Attivo Networks and Resilient customers to automate security orchestration, reduce triage times, and accelerate incident response. Organizations gain accurate detection early in the attack cycle, which can trigger incident response playbooks and leverage automation, for faster response. It also provides forensic evidence collection and attack activity recordings that organizations can leverage for threat intelligence development. Resilient can dynamically deploy decoys from the BOTsink as part of an orchestration playbook to add on-demand deception coverage in response to detected activity.
“Once attackers bypass existing prevention mechanisms, they have the freedom to move around and can remain undetected for extended periods. Organizations need solutions that excel at finding in-network threats without relying on known signatures or attack patterns,” said Tushar Kothari, chief executive officer of Attivo Networks. “The accuracy of this joint solution, coupled with its accelerated response, gives organizations the ability to deal with threats quickly to minimize the time attackers have to remain undetected within the network.”
Read More: New Report: Spike In Consumer Tech Use During COVID Is Accelerating Tech Adoption