Demisto combines with Preempt for initial end-to-end, real-time threat prevention and incident response offering



Preempt, a company revolutionizing prevention of cyber security breaches and internal threats, in partnership with Demisto, a vendor of security orchestration, automation and response (SOAR) technology, announced on Thursday a fully adaptive approach to cybersecurity and security operations that spans advanced threat prevention, incident response, and security orchestration.

Through this integration, Demisto and Preempt are delivering its initial end-to-end integration of real-time, identity-based threat prevention with security automation and orchestration. More than a simple one-way integration, Demisto and Preempt fully leverage the adaptive ability of both platforms to seamlessly blend and coordinate threat prevention, policy enforcement, incident response, and orchestration into a unified process.

To meet these security challenges, an organization can combine the adaptive threat prevention capabilities of the Preempt Platform with the security orchestration features of Demisto to automate and accelerate incident response and reduce business risk. It also helps with effectively and proactively reducing noise which can free up time to allow security analysts to focus on important and advanced attack patterns.

Demisto Enterprise delivers comprehensive Security Operations Platform to combine security orchestration, incident management, machine learning from analyst activities, and interactive investigation. Demisto’s orchestration engine automates security product tasks and weaves in the human analyst tasks and workflows.

Demisto enables security teams to reduce mean time to response (MTTR), create consistent incident management process, and increase analyst productivity. Demisto is backed by Accel and other prominent investors and has offices in Silicon Valley and Tel Aviv.

This integration shows the power of having a truly adaptive security ecosystem where all phases of security are designed to adapt to changing situations and work together. Organizations are now able to challenge suspicious behavior with multi-factor authentication while orchestrating a query to the user’s manager and automatically resolve all incidents and actions if behavior is approved.

“Security today is all about taking action that doesn’t get in the way of business and doesn’t generate more mindless work for security teams,” said Ajit Sancheti, co-founder and CEO of Preempt. “The adaptive integration of real-time identity and access threat prevention and security orchestration makes this possible in ways that were never attainable, until now.”

“Any organization concerned about cyber-attacks or insider threats usually has a limited incident response and security staff,” said Dan Sarel, co-founder and VP, product at Demisto. “Traditional one-way integrations have been a good start, but adaptive two-way cooperation between threat prevention and security automation opens up new opportunities for organization so that they can make smart, business-driven decisions automatically in real-time without facing an onslaught of notifications, minimizing the need for human intervention and human error.”

 

Leave a Reply

WWPI – Covering the best in IT since 1980