Why Playbook Lifecycle Management is the New Feature Your SOAR Technology Needs

As security operations centers (SOCs) broaden their implementation of security orchestration, automation and response (SOAR) technology to automate some, or all, of the triage, investigation and response their team must undertake, a new challenge is emerging. SOCs are finding their playbooks that interact with the many technologies in their environments are failing to complete successfully, resulting in analysts having to intervene manually to complete investigations.


Iranian Retaliatory Cyber Threats Are a Reminder of the Importance of Sound Incident Response

As if security operations professionals don’t have enough on their plates, they can add a new geo-political event — the U.S. killing of top Iranian Gen. Qasem Soleimani — to their list of potential sources of grief. The strike prompted the U.S.


The Difference Between SOAR and a Security Operations Platform

When an innovative product hits the market, it does not take long for the market to become overrun with similar offerings. Consumer technology products are a great example of this phenomenon. Soon after Apple released its AirPods wireless headphones, a number of lookalike offerings, even in Apple’s signature white color, flooded the market. For the consumer, this is good and bad. On the positive side, now there are more choices available, probably at different (and more affordable) price points.


The 7 Most-Read Siemplify Blog Posts Published in 2019

The Siemplify Blog is one of the easiest and most prolific ways we communicate with the security operations community at large. Thank you for your loyal readership in 2019, and please enjoy seven of the most-read posts published over the past 12 months. And be sure to keep visiting next year, as more amazing content is coming your way. See you in the new decade!


SaltStack Launches New Consulting Services to Optimize SaltStack Implementations

Lehi, Utah – December 18, 2019 – SaltStack®, the creators of intelligent automation software for security operations teams, today announced the availability of several new SaltStack consulting and training packages including the release of a new SaltStack certification exam.


A New Approach to Managing the Lifecycle of Your Playbooks (Video)

We are all aware that security operations centers are inundated with alerts causing massive case backlogs and potentially critical threats to go unnoticed for days, weeks or even months. Forward-leaning SOCs are taking steps to actively address this issue by deploying security orchestration, automation and response (SOAR) products. With a properly deployed and integrated SOAR solution, SOC teams achieve much-needed relief from alert overload.


Product Update: What's New in v5.3 of the Siemplify Security Operations Platform

If you are like most security professionals, you are hoping to get a little downtime before the end of the year so you can recharge the batteries for 2020. But before you power down, you should check out some of the changes just released in version 5.3 of the Siemplify Security Operations Platform. You can take a closer look at all features packing this version in the release notes, but here are the big three.


Confessions of Security Analysts

Ask a group of security analysts about the challenges of working in cybersecurity, and you’ll likely hear some common themes. In light of these challenges, it’s no wonder that security teams feel perpetually overwhelmed. They’re clamoring for new ways to streamline their security operations in order to stay on top of security alerts, increase the speed of detection and response, and do more with less.


Sitdown with a SOC Star: 11 Questions with Jesse Emerson of Trustwave

Welcome back to our continuing our new Q&A series – “Sitdown with a SOC Star” – in which we pose 21 questions to SecOps practitioners working at various levels and industries, and they choose 11 to answer. In this edition, we say hello to Jesse Emerson, VP of managed security services for the Americas at Chicago-based Trustwave, who was introduced over two decades ago to the world of cybersecurity when he was hired to help a company ready its systems for the year 2000.