The day we’ve been waiting for has come. We couldn’t be more excited to share that we launched the next generation of our platform, SOAR+, taking security automation to places it’s never been before. While traditional SOAR platforms support analysts by automating the data collection and data enrichment, providing the ability to go from data to decision making has remained outside the scope of possibilities -- until now.

With SOAR+, LogicHub becomes the only solution on the market to automate how security analysts make sense of data and make decisions on the appropriate course of action. This cognitive approach to codified decision making helps analysts successfully apply automation not just to incident response, but also threat detection.

When it comes to automating threat hunting, alert triage and incident response, decision automation is the hardest part, as the logic required for decision-making is often too complex to capture with a scripting language. Traditional SOAR platforms  only extract and enrich data and expect analysts to look at that data and make a decision about whether it’s a real attack and then take action.

By applying machine learning and analytics on large data sets, LogicHub SOAR+ automates security analyst workflows and decisions, helping teams save time, find critical threats, and eliminate false positives. Our platform fills the blind spot in security automation, delivering autonomous detection and response powered by the industry’s first decision engine. LogicHub SOAR+ also provides a full graphical view with readable explanations of each logical step along with the final output and scores, so analysts can rapidly review and validate results.

Why is this groundbreaking?

It comes down to the main challenge security analysts continue to face: the fact that threat hunting, alert triage and incident response ALL require complex decision-making. For example, to perform alert triage, analysts must decide whether or not an alert indicates a real incident. While threat hunting, analysts have to decide whether the activity they are looking at is malicious or benign. Finally, in the incident response stage, analysts spend a lot of time confirming that the incident is real and then decide how best to respond.

The LogicHub SOAR+ platform arms security analysts with an expert system that virtualizes the knowledge and expertise of security analysts and incident responders, baking it in as playbooks and turning them into recommendations. With a powerful decision engine, LogicHub can eliminate false positives and detect hard to find threats with minimal programming or analysts’ time. Automating more of the decision-making within the SOC makes it easier to expedite case resolutions and turn the information locked in security playbooks into thoughtful recommendations.

Sound incredible? We think it is.

We strive to be a highly customizable security automation platform that makes it easy for security teams to tailor and fine-tune playbooks in order to actually address security challenges such as alert triage and threat hunting. With the next generation of security automation, our goal is to make security automation practical and affordable for even the busiest security operations center (SOC).

To learn more about the LogicHub SOAR+ Platform, please visit:


Related Posts

September 13, 2022 Kumar Saurabh

Why No Code Solutions Are a Double-Edged Sword

Most out-of-the-box security automation is based on a simple logic — essentially, if “this”...

Learn More

August 16, 2022 Willy Leichter

Understanding MDR, XDR, EDR and TDR

A program with proper threat detection and response (TDR) has two key pillars: understanding the...

Learn More

August 9, 2022 Willy Leichter

Intuition vs. Automation: What Man and Machine Bring to Data Security

Cybersecurity experts Colin Henderson and Ray Espinoza share their take on the automation-driven...

Learn More

August 2, 2022 Anthony Morris

Using AI/ML to Create Better Security Detections

The blue-team challenge Ask any person who has interacted with a security operations center (SOC)...

Learn More

July 26, 2022 Willy Leichter

How to Select the Right MDR Service

It can be difficult to understand the differences between the various managed detection and...

Learn More

July 21, 2022 Willy Leichter

The Evolving Role of the SOC Analyst

As the cyber threat landscape evolves, so does the role of the security operations center (SOC)...

Learn More

July 19, 2022 Kumar Saurabh

Life, Liberty, and the Pursuit of Security

As cyber threats evolve, organizations of all sizes need to ramp up their security efforts....

Learn More

July 15, 2022 Tessa Mishoe

LogicHub Security RoundUp: July 2022

Hello, and welcome to the latest edition of the LogicHub Monthly Update! Each month we’ll be...

Learn More

July 12, 2022 Willy Leichter

Security Tools Need to Get with the API Program

No cloud API is an island The evolution of cloud services has coincided with the development of...

Learn More

July 6, 2022 Willy Leichter

Why the Rush to MDR?

LogicHub recently published a survey conducted by Osterman Research, looking at changing trends and...

Learn More