Pierre Noujeim, Author at Security Boulevard

Bi-Directional Sync with Microsoft Sentinel and Smart SOAR

Pierre Noujeim — Wed, 18 Oct 2023 18:18:03 +0000

Managed security service providers (MSSPs) and organizations that oversee multiple security teams will often have to manage multiple tenants of Microsoft Sentinel. In this situation, it’s inefficient and overwhelming to switch between instances in order to record and monitor changes to incident tickets. For MSSPs, this model limits growth potential because each analyst is limited […]

The post Bi-Directional Sync with Microsoft Sentinel and Smart SOAR appeared first on D3 Security.

The post Bi-Directional Sync with Microsoft Sentinel and Smart SOAR appeared first on Security Boulevard.

Why Smart SOAR is the Best SOAR for Darktrace

Pierre Noujeim — Tue, 10 Oct 2023 23:07:17 +0000

The need for integrated cybersecurity solutions has never been more pressing. With the growing complexity of cyber threats, having siloed security tools is no longer an option. This is where the synergy between Smart SOAR and Darktrace comes into play, offering an integrated platform for automated threat hunting and incident response. Out-of-the-box, Smart SOAR integrates […]

The post Why Smart SOAR is the Best SOAR for Darktrace appeared first on D3 Security.

The post Why Smart SOAR is the Best SOAR for Darktrace appeared first on Security Boulevard.

Automated Incident Response with Rapid7 and Smart SOAR

Pierre Noujeim — Wed, 04 Oct 2023 19:53:18 +0000

Integration between platforms has become a necessity rather than a nice-to-have. Smart SOAR offers a single platform to act as the connective tissue between siloed point solutions that do not natively integrate with each other. Specifically, the collaboration between Smart SOAR and Rapid7 presents a significant advancement in automating security workloads. Smart SOAR offers three […]

The post Automated Incident Response with Rapid7 and Smart SOAR appeared first on D3 Security.

The post Automated Incident Response with Rapid7 and Smart SOAR appeared first on Security Boulevard.

What Enterprise Security Teams Expect from Case Management Solutions

Pierre Noujeim — Fri, 29 Sep 2023 22:56:54 +0000

A less-talked about challenge in cybersecurity is managing multiple alert queues. While the volume of alerts is acknowledged as an issue, an important step toward simplifying day-to-day life for security analysts is to consolidate alerts into a single queue. This is why security orchestration, automation, and response (SOAR) tools must offer native case management. When […]

The post What Enterprise Security Teams Expect from Case Management Solutions appeared first on D3 Security.

The post What Enterprise Security Teams Expect from Case Management Solutions appeared first on Security Boulevard.

Automated Incident Response with AlienVault and Smart SOAR

Pierre Noujeim — Wed, 27 Sep 2023 21:07:17 +0000

Open-source threat intelligence (OSINT) is a valuable asset to pull from during incident investigations. However, doing this for every alert is monotonous and can be prone to human errors. When using SOAR security tools, you can build IoC enrichment directly into playbooks and automatically populate incident tickets with notable information from the community. One popular […]

The post Automated Incident Response with AlienVault and Smart SOAR appeared first on D3 Security.

The post Automated Incident Response with AlienVault and Smart SOAR appeared first on Security Boulevard.

Automated Incident Response with AWS and Smart SOAR

Pierre Noujeim — Thu, 14 Sep 2023 23:27:51 +0000

D3 Smart SOAR offers 12 out-of-the-box integrations with Amazon Web Services (AWS) products. These include: AWS CloudTrail AWS CloudWatch AWS EC2 AWS ECS AWS EKS AWS S3 AWS SQS AWS SSM AWS ECR AWS IAM AWS Security Hub AWS Guard Duty In this integration spotlight, we will focus on AWS GuardDuty and AWS Elastic Compute […]

The post Automated Incident Response with AWS and Smart SOAR appeared first on D3 Security.

The post Automated Incident Response with AWS and Smart SOAR appeared first on Security Boulevard.

How Enterprises Use Smart SOAR to Track MSSP SLAs

Pierre Noujeim — Wed, 06 Sep 2023 16:40:20 +0000

Large enterprises often outsource some of their security needs to Managed Security Service Providers (MSSPs). When alert volumes are high, this is a simple way to onboard trained security professionals and stay on top of a daily queue of incidents. However, when working with third parties, security managers need to have management systems in place […]

The post How Enterprises Use Smart SOAR to Track MSSP SLAs appeared first on D3 Security.

The post How Enterprises Use Smart SOAR to Track MSSP SLAs appeared first on Security Boulevard.

Implementing MITRE D3FEND for ATT&CK Technique T1110: Brute Force

Pierre Noujeim — Fri, 25 Aug 2023 23:16:50 +0000

When account credentials are unknown, attackers may use a brute force attack in order to gain access. This can occur as an early stage of their attack, to gain initial access, or to enhance their privileges after access has already been obtained. MITRE’s D3FEND matrix outlines how to address this technique; however, security teams struggle […]

The post Implementing MITRE D3FEND for ATT&CK Technique T1110: Brute Force appeared first on D3 Security.

The post Implementing MITRE D3FEND for ATT&CK Technique T1110: Brute Force appeared first on Security Boulevard.

Why Smart SOAR is the Best Independent SOAR for Splunk Enterprise Security

Pierre Noujeim — Fri, 18 Aug 2023 23:35:19 +0000

Connecting Splunk SIEM with other security tools is a scenario Smart SOAR handles often. By ingesting alerts from Splunk into Smart SOAR, and using the integration commands in event and incident playbooks, Smart SOAR users can leverage Splunk’s database in incident investigations by consolidating all relevant information on an event. The same enrichment can be […]

The post Why Smart SOAR is the Best Independent SOAR for Splunk Enterprise Security appeared first on D3 Security.

The post Why Smart SOAR is the Best Independent SOAR for Splunk Enterprise Security appeared first on Security Boulevard.