sb-nz logo
Story image

Gartner names ThreatQuotient a representative vendor for SOAR

12 Oct 2020

Security operations platform provider ThreatQuotient has been included as a Representative Vendor in the 2020 Gartner Market Guide for Security Orchestration, Automation and Response (SOAR) Solutions. 

As defined by Gartner, SOAR solutions “combine incident response, orchestration and automation, and threat intelligence (TI) management capabilities in a single platform.”

A representative vendor provides an example within a market guide to help readers understand the kinds of offerings that are defining the market itself. While it is not an endorsement or rating, it shows that a vendor has offerings that are helping move the market forward.

A statement from ThreatQuotient says that SOAR platforms are evolving towards what it has been developing for years – a full-featured security operations platform designed to provide companies with the relevant, contextual intelligence and automation needed to support multiple teams and capabilities. 

It adds that as threat intelligence is essential for security operations, the company’s data-driven approach to SOAR provides high confidence in the intelligence being used, the decisions that are made and the incident response workflows that are executed.

ThreatQ is a threat-centric security operations platform that aggregates, scores, and prioritises intelligence. 

The platform allows organisations to unify their cybersecurity infrastructure and components into a single defence ecosystem to improve the approach to security investigations and the meantime to respond to cyberthreats. 

Additional use cases for ThreatQ include threat intelligence management, threat hunting, spear phishing, alert triage and vulnerability management.

“We are encouraged by the evolving definition and industry understanding of SOAR, which is becoming more inclusive of threat intelligence and security incident response platforms,” says ThreatQuotient president and CEO John Czupak. 

“ThreatQuotient’s approach to SOAR platforms starts with the threat because we believe you cannot defend against or respond to what you do not understand. We believe Gartner’s latest Market Guide for SOAR Solutions validates the growing need for tools that are complementary to an organisation’s arsenal of products and processes already in place. We are committed to continuing to meet the market need for a security operations platform that improves the effectiveness of the SOC.”

Customer-controlled prioritisation within ThreatQ is based on an organisation’s risk profile and their own set of scoring parameters, and ThreatQ automatically filters out noise and reveals the right priorities for action. 

To ensure teams remain focused on high-priority threats and to reduce false positives, the self-tuning Threat Library learns, recalculates and reevaluates priorities based on a continuous flow of new data and context into ThreatQ. 

The company claims that through automation and optimisation with ThreatQ, organisations can achieve results such as freeing-up two to three full-time security analysts for higher-level tasks.

Link image
The importance of data resilience in the current cybersecurity climate
Protecting an organisation's data is one of the most crucial functions of any CISO. Strategies should be in place where data is stored securely and cost-effectively.More
Story image
BlueVoyant acquires Managed Sentinel, builds out Microsoft MSS offerings
“Combining Managed Sentinel’s Azure Sentinel deployment expertise with BlueVoyant’s MDR capabilities will help customers operationalise and maximise Microsoft security technologies."More
Story image
SOC as a Service: Fortinet’s answer to today’s network challenges
Jon McGettigan, Fortinet A/NZ Regional Director, explains how SOC as a Service can back up your current SOC team, fast-track deployments and ensure regulatory compliance.More
Story image
Microsoft takes legal action to disrupt botnet and combat ransomware
Microsoft has announced it took action to disrupt a botnet, Trickbot, one of the world's most infamous botnets and prolific distributors of malware and ransomware.More
Story image
NordVPN upgrades infrastructure with launch of colocated servers
"The greatest advantage of having colocated servers is their complete ownership, which guarantees access only by our authorised people."More
Story image
BayCom partners with NICE inContact to offer cloud contact centre platform in NZ
“With our extensive experience in the industry, BayCom has the ability to design, implement and support CXone nationwide, providing organisations with an industry-leading Contact Centre as a Service (CCaaS) solution to deliver on their customer experience strategies.”  More