Blog

Defensys SOAR 4.7: New advanced features for the incident management

Defensys has released a new version of the Defensys Security Orchestration Automation and Response Platform (SOAR), a platform that is designed to automate monitoring and responding to cybersecurity incidents.

The Defensys SOAR 4.7 platform allows incidents to be combined into groups. You can work with a chain of related or the same types of incidents. One parent incident is selected for the group, the others are considered as child incidents. By grouping them, the user can examine and analyze cybersecurity events all together, if they have a common cause. Besides working with groups of incidents from the user interface, it is now available for the users to use in playbooks and through the public API of the system.

Playbooks were also updated. In version 4.7, the incident card has a playbook launch timeline with the ability to control its display: the user can navigate to the selected playbook, as well as collapse the playbook diagram into a compact block. The start button for a particular playbook can now be placed in the incident card itself.

Defensys customer support will notify current users when updates are available for migration. If you would like to receive an update for pre-testing and to familiarize yourself with the functionality, send us an email to support@defensys.com

More

Defensys will participate in GISEC-2022 in Dubai

Defensys, a global provider of cybersecurity solutions, will participate in the international Gulf Information Security Expo & Conference (GISEC) that is going to be held in Dubai from March 21-23, 2022.

GISEC-2022 is the largest and most significant event dedicated to cybersecurity in the Middle East region. Bringing together more than 300 leading cybersecurity compamies from more than 40 countries, the event will be a major platform for initiating an international dialogue on combating cyber threats, including discussion of key market needs and existing innovative solutions in the field of cybersecurity.

We would like to invite you to visit Defensys booth (D46), where we can demonstrate you all the features of Defensys ecosystem products: SOAR Platform, Security GRС Platform, Threat Intelligence Platform, Defensys SENSE – our products that are specializing in building SOC, automation of cyber security processes and early detection of suspicious activities. And, of course, we would like to tell you in detail about the latest technologies that underlie all of our solutions to protect your business. Our team is always ready to demonstrate the latest versions of Defensys products to everyone and share our implementation cases across various industries.

We look forward to welcoming you at the GISEC-2022 event and answering your questions about our expertise in the field of cybersecurity and exchange contacts for further cooperation.

More

New version of Defensys SENSE released

Defensys has released a new version of its cybersecurity analytics platform Defensys SENSE 1.5. This version introduces several new features compared to the commercial release, which was out in May 2021. The key changes are in the behavioral analysis system. The platform is now capable of training and retraining itself to update behavior patterns in a timely manner. The user can adjust the intervals of automatic re-training to the specific conditions of his infrastructure, so that the programmatic experts receive new information in time and reduce the number of repeated false positive anomalies. Also, by adjusting the retraining intervals, the user can set the frequency of resetting obsolete context across objects, which will avoid the effect of rights accumulation, for example, in the case of employee role changes in the company.

The updated platform integrates with a number of new sources. Integrations with MaxPatrol SIEM and ArcSight ESM systems are especially noteworthy. Defensys SENSE also allows to save and process not only raw events, but also events of correlation from ArcSight ESM, conveniently placing them on the general timeline of the observation objects. Such events can be scored according to their criticality level which wich will affect the observable score.

More

Cybersecurity Digest #43: 7/02/2022 – 18/02/2022

Cybersecurity news

More

Cybersecurity Digest #42: 24/01/2022 – 4/02/2022

Cybersecurity news

More