Demisto announces latest release of its Security Operations Platform

Feb. 28, 2018
Latest Demisto Security Automation and Orchestration release maximizes return on security investments and leverages full capabilities of deployed security products

CUPERTINO, Calif. — Feb. 27, 2018 — Demisto, an innovator in Security Automation and Orchestration technology, has launched the latest release of its Security Operations Platform, enabling customers to best leverage the incident metrics in Demisto through customizable dashboards and reports, enhance modularity and reusability of playbooks to accelerate workflow development, and improve machine learning suggestions to build leaner response processes.

Organizations can now accurately measure metrics around incident response and leverage Demisto’s rich underlying data through powerful customizable dashboards and reports. CISOs can measure SOC health and business risk, SOC managers can measure analyst productivity and incident bottlenecks, and analysts can measure incident and indicator trends. Access to an easily configurable widget library and the ability to spin up custom incident and indicator widgets results in custom persona-based dashboards to drive actionable metrics.

The new customizable dashboards and reports enable users to better sort, access and understand the collected data to measure metrics about analyst workload, incident trends and security effectiveness across their security product suite.

“Security Orchestration, Automation and Response (SOAR) tools are expected to generate reports and dashboards for at least three classes of persona: analyst, SOC director and chief information security officer (CISO),” wrote Claudio Neiva et al of Gartner. “Because SOAR tools orchestrate incident response, have bi-directional communication with many other tools in the organization, and empower analysts, they are generating and accessing a lot of very valuable metrics that can be used for several types of reporting.”

Demisto’s new product release has also improved machine learning capabilities, enabling all analysts to perform at a higher level of expertise. The platform now provides argument suggestions for automations used in playbook tasks, allowing users to maximize productivity in real-time and hone in on the most effective resolution procedures. This facilitates creation of best-in-class response workflows that are primed for continuous improvement.

“Demisto’s new release comes packed with new features suggested by our community of customers and partners,” said Dan Sarel, co-founder and VP Products of Demisto. “Demisto’s automation suite is easy to learn but has endless potential use cases, allowing analysts to codify and automate complex enrichment and response processes across the entire security product stack. The increased flexibility, reusability, and portability of Demisto’s playbooks can help combat the security industry skills shortage and help analysts perform key tasks better.”

Demisto Enterprise integrates with more than 160 security products and enables organizations to build playbooks for different security operations. By integrating other security products with Demisto, users can orchestrate actions across a suite of products in one window, automate response actions through playbooks, and run live security commands from a collaboration interface to remediate threats. All of which can reduce mean time to response (MTTR) for security incidents. In addition, the case management and machine learning capabilities help security teams save resources and time while enforcing rigor and process to incident response. Demisto helps future-proof security operation centers.

Availability and Pricing

Demisto’s new release is available today.  Visit www.demisto.com to download a free version.

Source: Gartner, “Innovation Insight for Security Orchestration, Automation and Response,” Claudio Neiva et al, Nov. 30, 2017.

About Demisto

Demisto Enterprise is the first and only comprehensive Security Operations Platform to combine security orchestration, incident management, machine learning from analyst activities, and interactive investigation. Demisto’s orchestration engine automates security product tasks and weaves in the human analyst tasks and workflows. Demisto enables security teams to reduce mean time to response (MTTR), create consistent incident management process, and increase analyst productivity. Demisto is backed by Accel and other prominent investors and has offices in Silicon Valley and Tel Aviv. For more information, visit www.demisto.com or email [email protected].