Huntsman Security’s SIEM provides extensive automated response script and command execution capabilities, (Guardian Response). Additionally, we provide the option to include our integrated Security Orchestration, Automation and Response (SOAR) technology.
Guardian scripts can automatically initiate complex automated responses, including:
Once an alert has been legitimised as both serious and genuine, the system can be configured to take actions to mitigate risks such as (i) threat containment at a network level; (ii) initiate perimeter/Wi-Fi connection termination; (iii) isolate or suspend a user account based on malicious user activity.
Huntsman SIEM Automated Threat Verification Screen
EXPLORE OTHER SIEM FEATURES
Built-in high speed detection capabilities, matched to the MITRE ATT&CK® framework
Any data set within the system easily translated into a report and automatically published to a relevant stakeholder
Real-time machine learning capabilities to detect unknown threats
Complete support for the alert triage, investigation and response lifecycle
Let’s explore how Huntsman Security solutions can support your cyber resilience