Elastic automates security with SOAR, practices open security 

by | Aug 24, 2022 | Technology

Were you unable to attend Transform 2022? Check out all of the summit sessions in our on-demand library now! Watch here.

There’s only so much a human security team can do in a day, yet many analysts are forced to waste time on inefficient manual processes. 

In fact, 56% of large companies handle at least 1,000 security alerts per day. If each of these alerts takes 10 minutes to address, that’s over 166 hours wasted per day or 830 per week. Automation is now essential for eliminating these manual tasks so security professionals can focus on more high-value work. 

That’s why today, SIEM provider, Elastic, announced the launch of Elastic Security 8.4, which introduces new native security, orchestration, automation and response (SOAR) capabilities. It also has partner integrations designed to enhance the pace of security operation centers (SOCs) and better support human analysts. 

The new solution is powered by Elastic Agent and will offer native remediation and response capabilities across all users, as well as configurable alerts and integration with other SOAR vendors, enabling organizations to implement SOAR without the need to purchase additional solutions.

Event
MetaBeat 2022
MetaBeat will bring together thought leaders to give guidance on how metaverse technology will transform the way all industries communicate and do business on October 4 in San Francisco, CA.

Register Here

SOAR and open security 

Elastic’s announcement comes as security automation is becoming more important for surviving the increasingly complex threat landscape. 

According to IBM, organizations with fully deployed security artificial intelligence (AI) and automation spent $3.05 million less per data breach compared to those without. SOAR offers a comprehensive framework in terms of security automation. 

According to Gartner, SOAR platforms are “solutions that combine incident response, orchestration and automation, and threat intelligence platform management capabilities in a single solution.” The end result is the ability to decrease the mean time-to-detection and mean ti …

Article Attribution | Read More at Article Source

Share This