SecBI makes breakthrough in cybersecurity for SOCs
SecBI, the cyber threat management company, has extended its threat detection solution with automated response, an ingredient that has supposedly been missing from the security, orchestration, automated response (SOAR) market, the company says.
Designed for security operations centres (SOC) and managed security service providers (MSSPs), the solution offers detection, investigation and now automated response for threat detection.
More specifically, through the solution, users are able to do full scope detection of suspicious activity, improve analysis of threats, couple detection with response to threats, and automatically deliver information from response mechanisms.
SecBI CEO Gilad Peleg says, "Until now, 'automation' in a SOC has referred to playbook and workflows, ignoring all the progress made in advanced detection.
"SecBI's flavour of automation offers both data-driven detection powered by our proprietary Autonomous Investigation technology, and flexible, automated response that meets the requirements of every SOC and MSSP."
"When using automation via playbooks alone, analysts are plagued by large numbers of false positives and partial information on sporadic anomalies, often causing them to miss the stealthy threats. The level of automation provided by our new version truly constitutes a breakthrough in cybersecurity," Peleg says.
According to SecBI, many solutions currently available often don't deliver on offering automated response alongside advanced machine-learning detection.
Cyber Policy industry analyst and executive editor Hugh Taylor says, "Talk about scaling the SOC often seems to involve a connected series of fools' errands.
"People try to build organisations they can't staff and automate for scenarios they can't imagine. It doesn't work.
"What SecBI is doing to fight this seemingly unwinnable battle is to automate the response process using AI. This way, the SOC is reacting intelligently, even to previously unknown threats, without having to resort to a playbook. Now, you can actually scale the SOC."
SecBI is an AI-based cybersecurity automation solutions company focused on detection and response. The company specialises in network traffic analysis (NTA) for security operations centres (SOCs) and managed security service providers (MSSPs).
SecBI's Autonomous Investigation technology incorporates machine learning for better scope and threat detection and understanding.=The solution can be deployed on-premise or in the cloud, and is currently used by financial institutions, telecoms, retailers, and manufacturing enterprises.