Security Orchestration, Automation and Response Solutions Reviews and Ratings

Using PhishER has saved significant time and effort on my part by using AI to read the reported emails and determine if they are truly a threat, spam, or clean. I am able to immediately remediate the threat emails in the rest of the orgainzation and pull them out of users' inboxes.

The reliability of the Swimlane cloud platform has been great. We've experienced zero downtime in the 1.5yrs that we've been using Swimlane.

Google Security Operations is a great SOAR that is simple to use and configure. It provides a wide range of features like playbooks which help better incident response, retro threat hunting, real-time analysis and many more to help streamline our security posture in my organization. It's also easy to implement and integrate with other login platforms as well as security products for better automation and orchestration. Also automate most of the manual work, which helps our security team to focus more on investigations rather than manual tasks. Overall, the platform is stable and easy to customize to fit my organization's needs.

Splunk SOAR automates and orchestrates security operations of the organization smoothly. It has been a good experience overall.

Cortex XSOAR provides easy integration with more than 500+ third party tools with predefined playbooks and classifiers. It has a marketplace from where we can download the integrations setup. The war room features allowed them to work together to investigate threats. It has a bundle of predefined playbooks, we can even customize them and create a new playbook with the help of existing.

The simplicity of use and complexity of applications enabled by using 7 actions within Tines is incredibly helpful. There is a massive amount of use cases and API integrations that make this a powerful tool while still being easy to use. I especially liked the Tines University Certifications. It provides hands on lessons of each of the seven actions available, walks you through how to connect and pass information to each action, as well as see the data outputs provided directly to your email. The customer service was excellent. Any time I wanted more depth of knowledge or had questions there was an agent to speak with me very quickly. They were able to provide explanations and examples of any items I wanted to see. Also, being able to export my story and provide it to them was incredibly helpful to get specific feedback on my actions and how to make them more efficient.

Great tool for automating common use cases. It is really easy to use and the end-user interaction is possible.

I would recommend Enterprises that are keen to enhance and optimize their security operations in a more focused and automated fashion by using nicely streamlined playbooks. it is quite a powerful tool to improve security operation efficiency and reduce the response time to detect, respond and recover/restore security operations to minimize the impact to business and running services.

Orchestration and managing a lot of security tools is a very crucial initiative that must be addressed in every organization. As part of the team that implemented and used this solution, I can say that accessing and using this tool helps us as administrators to easily manage and maximize the usage of the features available on Trellix security tools integrated on this platform. In terms of maintenance and availability of the platform, sometimes due to some patches, it will not be available but due to some technical support of the product, the issue with regards to access is always remediated.

Smart SOAR services have been proven game changer for our organization with their automation and orchestration capabilities. They streamlined our security incident response , reducing manual efforts and improving overall efficiency. The intuitive interface makes it easy for our team to manage and prioritize incidents effectively. Our team is also very much satisfied with their top-notch customer support.

Insight connect has been a fantastic addition to our environment. Allowing us to automate many time consuming task, and enrich data from our siem, Allowing a small soc team to have a huge impact. Scalability - we have not hit a limit or any restriction to date. To the best of our knowledge we could scale infinitely. Interrogations - Out of the box interrogations are plentiful for the major vendors, and growing on a regular basis. Additionally, in a very easy way you can create your own integration, so there are no limitations on what you can build. Customisation - Insight connect works with a building block style system. Where you can add in custom pieces/scripts/steps into the work flow. The possibilities are endless. Ease of use - Jr level security analyst are able to automate workflow. This is the only platform I am aware of that someone at that level could add such tremendous value.

IBM Security QRadar SOAR is a powerful and comprehensive solution that brings efficiency and effectiveness to the world of Cyber Security.

The communication with teacher and organization employees were fast and efficient. Our teacher is a SOAR professional and clarify all our doubts across the course. The evaluation was a little bit easy, but okay.

Microsoft has done a great job with this product line.

ServiceNow security orchestration, automation and response is an exceptional tool that has revolutionized the way businesses operate by providing an easy-to-use platform for IT service management. This platform offers a variety of features that help businesses streamline thier operation, automate tasks, and improve security delivery. One of the biggest benefits of using this tool is its user-friendly interface, which makes it easy for users of all levels to navigate and use the platform. It also offers a range of powerful analytics and reporting tools, which enable businesses to monitor and track their performance in real-time, identify areas for improvement, and make data-driven decisions.

Threatstream is a comprehensive Threat Intelligence Platform (TIP). It allows for the integration of a wide array of curated threat intelligence feeds, offering up-to-date known threats and indicators of compromise. From there, we're able to automate process that lead to the automatic blocking in other security tools. Threatstream also has exceptional customer support, providing prompt and knowledgable information. With it's technical assistance, training, guidance, and a responsive and helpful support, Threatstream is one of the best TIPs on the market.

Automation tool which would be able to provide your ROI in a very short period. Very engaging team. Keen for your business and shows the dedication in making it happen

The automation and security incident response solution that the LogicHub vendor offered us has met our expectations that we had at the beginning of the project. Although at the beginning we had to solve some issues in the implementation, once the services began to operate we were able to notice about the functionality and agility with which security events related to malware are detected, in order to inmediately put hands on the solution it.

A real-time defender aganist cybersecurity threads. Blumira helps our organization in detecting threads in our system and website, it automatically detects and quarentines malware.

We have been using Mandiant Advantage for about a year now. It offers a wealth of information right at our fingertips and allows us to research adversaries and their tactics for developing use cases on our end.