Measuring ROI for something like a security orchestration, automation and response (SOAR) solution within a security operations center (SOC) goes beyond saved time and prevented breaches. There’s a human element. I sat down with Rebekah Wilke, the latest addition to ...
– 4 minute read
Endpoint security often comes to mind first when people think about protecting their organization from hackers and cyberattacks. It involves ensuring that all possible points of entry into critical systems, applications or physical devices are protected from unwanted visitors who ...
– 2 minute read
Cyber forensic investigations are a critical component of any incident response process. While such investigations are important, gathering forensic details post-incident can be a cumbersome manual task. But with the right solutions in place–and fully integrated—you can significantly streamline investigations ...
– 2 minute read
Terms and acronyms can get convoluted in the ever-growing security marketplace. As an example, many use SIEM and SOAR interchangeably. Although security information and event management (SIEM) and security orchestration, automation and response (SOAR) have capabilities that complement each other ...
– 2 minute read
Each summer, Swimlane hosts interns in collaboration with the University of Colorado Law School’s Silicon Flatirons Center’s Startup Summer program—a 10-week program that brings undergraduate students from around the country to Denver and Boulder for the summer experience of a ...
– 3 minute read
Security orchestration, automation and response (SOAR) goes beyond automating tasks that used to be handled manually by working together to effectively, and even proactively, improve your cybersecurity operations. SOAR—sometimes also referred to as security automation and orchestration—combines technical capabilities and ...
– 2 minute read
Swimlane 3.2 is here! Visit us at Black Hat, booth #2304, to check out the latest release of our comprehensive security orchestration, automation and response (SOAR) platform. So, what's new? Swimlane 3.0 introduced prebuilt applications and modular applets, allowing you ...
– 2 minute read
Gartner defines threat intelligence as “evidence-based knowledge, including context, mechanisms, indicators, implications and actionable advice, about an existing or emerging menace or hazard to assets that can be used to inform decisions regarding the subject’s response to that menace or ...
– 1 minute read
In the constantly-evolving world of cybercrime and cybersecurity, proactivity is key. Organizations must engage in regular cyber threat hunting techniques and processes to stay ahead of evolving threats. Putting up perimeter defenses and watching for attacks can leave an organization ...
– 2 minute read
Detecting and proactively preventing external cyberattacks is a focus for security operations (SecOps) teams, but insider attacks also pose a risk. In fact, nearly 75% of data breaches are caused byinsider threats. Whether insiders maliciously intend to attack organizations, neglect ...
– 2 minute read
Organizations can no longer be passive when it comes to security. By the time an active threat is detected, quarantined and terminated, it’s often already too late. In order to truly protect and defend their organization, security operations (SecOps) teams ...
– 2 minute read
A playbook is defined as a set of rules, describing at least one action to be executed with input data and triggered by one or more events. It is a critical component of cybersecurity—especially in relation to security automation and ...
– 3 minute read
Swimlane will be attending RSA 2018 in San Francisco from April 16 to 20th! Stop by our booth to see a demo of the upcoming release of Swimlane 3.0 and to enter our giveaway. Meet us in the North Expo ...
– 1 minute read
There’s a shortage of places for security operations (SecOps) professionals to share knowledge around security automation and orchestration. Automation and orchestration within SecOps are still new and disruptive concepts, and many experts and security veterans are beginning to pick up ...
– 2 minute read
If you’re even a casual fan of the original Star Trek, you’ll be familiar with Scotty’s signature phrase, “I can’t do it, Captain! I don’t have the power!” Or better, when he uttered the famous line, “I can’t change the ...
– 3 minute read
With increasing cyber threats, more organizations are using a variety of tools to monitor and manage security. Security information and event management (SIEM) systems are popular solutions that promise to monitor and alert your security operations (SecOps) team of potential ...
– 3 minute read
The 2018 Winter Olympics offered many exhilarating examples of resiliency in sports—world-class athletes recovering from hair-raising setbacks and turning in star performances despite nearly wiping out. IT departments have their own such moments when it comes to IT resiliency. A ...
– 3 minute read
Phishing attacks are increasing at an ever-alarming rate. While there are advanced solutions in place to prevent these types of attacks, every solution produces yet another alert. With large organizations receiving between 10,000 and 150,000 security alerts per day, security ...
– 2 minute read
The National Institute of Standards and Technology's (NIST) Cybersecurity Framework was developed in response to a 2013 presidential executive order to help government and private organizations better protect their critical infrastructure from cyberattacks. Now nearing its second version (1.1), the ...
– 5 minute read
Although ChatOps isn’t new, the solution has continued to gain popularity over the past few years. Instead of the basic instant messaging tools that we’ve come to rely on, ChatOps has evolved into a collaboration tool that connects people, tools ...
– 1 minute read
