DevOps.com

  • Latest
    • Articles
    • Features
    • Most Read
    • News
    • News Releases
  • Topics
    • AI
    • Continuous Delivery
    • Continuous Testing
    • Cloud
    • Culture
    • DevSecOps
    • Enterprise DevOps
    • Leadership Suite
    • DevOps Practice
    • ROELBOB
    • DevOps Toolbox
    • IT as Code
  • Videos/Podcasts
    • DevOps Chats
    • DevOps Unbound
  • Webinars
    • Upcoming
    • On-Demand Webinars
  • Library
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Communities
    • AWS Community Hub
    • CloudBees
    • IT as Code
    • Rocket on DevOps.com
    • Traceable on DevOps.com
    • Quali on DevOps.com
  • Related Sites
    • Techstrong Group
    • Container Journal
    • Security Boulevard
    • Techstrong Research
    • DevOps Chat
    • DevOps Dozen
    • DevOps TV
    • Digital Anarchist
  • Media Kit
  • About
  • AI
  • Cloud
  • Continuous Delivery
  • Continuous Testing
  • DevSecOps
  • Leadership Suite
  • Practices
  • ROELBOB
  • Low-Code/No-Code
  • IT as Code
  • More Topics
    • Application Performance Management/Monitoring
    • Culture
    • Enterprise DevOps

Home » News » Demisto Introduces Industry’s First Machine Learning Incident Response Platform that Gets Smarter with Every Analyst Action

Demisto Introduces Industry’s First Machine Learning Incident Response Platform that Gets Smarter with Every Analyst Action

By: Parker Yates on June 28, 2017 Leave a Comment

Demisto Enterprise Learns from Dynamic Customer Environments and Analyst Actions to Optimize Incident Response and Help Train the Next Wave of Security Analysts

Recent Posts By Parker Yates
  • Appdome Announces Teams and Enhanced Workflow for DevOps Continuous Integration Models New Features Enable Group and Collaborative Mobile Integration Efforts and App Branding
  • Gigster Raises $20 Million Series B to Power the World’s Engineering
  • Infostretch Introduces New CloudBees Enterprise Jenkins Training Services, Driving DevOps Transformation
More from Parker Yates
Related Posts
  • Demisto Introduces Industry’s First Machine Learning Incident Response Platform that Gets Smarter with Every Analyst Action
  • Devo Integrates With Demisto Enterprise to Improve SOC Operations
  • GitLab Gets an Overhaul
    Related Categories
  • Latest News Releases
Show more
Show less

 CUPERTINO, Calif. — 8amEST June 28, 2017 — Demisto, Inc., an innovator in Security Automation and Orchestration technology, today introduced the industry’s first Security Operations Platform that learns from analysts’ actions used to resolve incidents to optimize future incident response. The new machine learning-based technology, called “Demisto Insights” and available in the latest version of Demisto Enterprise, helps analysts during an investigation by suggesting the best methods to resolve an incident. Such machine learning technology marks the first time in the security industry when a solution learns from experts rather than relying only on past historical security data.

DevOps/Cloud-Native Live! Boston

The security industry faces a significant shortage of skilled incident response (IR) analysts. While automation is being used to help analysts reduce manual work, organizations need to be able to learn from experienced analysts’ actions to help educate and train younger analysts to solve problems faster. With this new release, Demisto offers the industry’s most comprehensive Security Operations Platform with pre-built automation playbooks, more than one hundred integrations, incident case management, threat feed aggregation and correlation with incidents, and now machine learning that improves the analysts’ productivity.

“Like Cylance, Demisto is applying machine learning and automation to today’s overly complex incident response process,” said Steve Mancini, senior director of information security at Cylance. “The Demisto platform is redefining how my team approaches internal investigations through the use of machine learning, collaboration and historical threat feed correlation to save time, ensure consistency, and reduce risk.”

“Demisto Insights” collects key findings from analysts as they resolve incidents. Using unique machine learning technology it also suggests the best team members to handle the incident, and best next steps to resolve the incident that will continually enhance playbooks. This type of machine learning is unique in the industry because the Demisto platform learns from analysts’ and SOC managers’ actions which are high fidelity signals rather than static security product data. This model enables accurate results for each customer as Demisto learns the unique customer environment rather than generic security data.

“Demisto was already leading the industry in helping organizations with significant cost and security risk reduction during the incident management life cycle by leveraging our unique automation and collaboration features,” said Dan Sarel, Demisto co-founder and VP Products. “With these new enhancements, we now extend the value delivered by the platform to make it even easier and faster for analysts to respond to incidents. The platform significantly reduces adoption time and time to value with our new machine learning capabilities and updated graphical interface.”

The latest release of Demisto Enterprise enhances the playbook authoring interface and also provides a live runtime review of the playbook execution. In addition, a new language called “Demisto Transform” has been introduced which helps IR analysts build complex playbooks for automation much faster and without writing any code. All these capabilities enhance the experience of security analysts by making it even easier to build automations and to review the results of the investigation. The platform highlights the findings in a single, improved view to give analysts all the details needed for decision making.

In addition, Demisto’s new release offers numerous product integrations as well as 50 additional enhancements. For example, Demisto’s new and improved incidents page helps SOC managers have a better view of the SOC status and allows them to more easily manage their teams. Also, the new incident summary page delivers a quick view of the main findings in each incident, helping managers get a quick view of the ongoing events and helping analysts who join an investigation get quickly oriented. For a complete list of Demisto’s new integrations and release enhancements, see https://www.demisto.com/product/ .

Pricing and Availability
Demisto’s new Enterprise Security Operations Platform is generally available today, with annual pricing starting at $100,000 for up to two analysts. A fully multi-tenant Demisto solution for MSSP that provides SOC-as-a-Service is also available from Demisto. For more information, see https://www.demisto.com/product/ .

 About Demisto
Demisto Enterprise is the first and only comprehensive Security Operations Platform to combine security orchestration, incident management, machine learning from analyst activities, and interactive investigation. Demisto’s orchestration engine automates security product tasks and weaves in the human analyst tasks and workflows. Demisto enables security teams to reduce mean time to resolution (MTTR), create consistent incident management process, and increase analyst productivity. Demisto is backed by Accel and other prominent investors and has offices in Silicon Valley and Tel Aviv. For more information, visit www.demisto.com or email [email protected].

— Parker Yates

Filed Under: Latest News Releases

Sponsored Content
Featured eBook
The Automated Enterprise

The Automated Enterprise

“The Automated Enterprise” e-book shows the important role IT automation plays in business today. Optimize resources and speed development with Red Hat® management solutions, powered by Red Hat Ansible® Automation. IT automation helps your business better serve your customers, so you can be successful as you: Optimize resources by automating ... Read More
« BMC Empowers the Future of Work with BMC Digital Workplace
How SAFe helped NICE Actimize Scale Agile to Improve Quality and Speed Cycle Times »

TechStrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows

Upcoming Webinars

Building a Successful Open Source Program Office
Tuesday, May 24, 2022 - 11:00 am EDT
LIVE WORKSHOP - Fast, Reliable and Secure Access to Private Web Apps
Tuesday, May 24, 2022 - 3:00 pm EDT
LIVE WORKSHOP - Boost Your Serverless Application Availability With AIOps on AWS
Wednesday, May 25, 2022 - 8:00 am EDT

Latest from DevOps.com

DevOps/Cloud-Native Live Boston: Get Certified, Network and Grow Your Career
May 23, 2022 | Veronica Haggar
GitLab Gets an Overhaul
May 23, 2022 | George V. Hulme
DevOps and Hybrid Cloud: Life in the Fast Lane?
May 23, 2022 | Benjamin Brial
DevSecOps Deluge: Choosing the Right Tools
May 20, 2022 | Gary Robinson
Managing Hardcoded Secrets to Shrink Your Attack Surface 
May 20, 2022 | John Morton

Get The Top Stories of the Week

  • View DevOps.com Privacy Policy
  • This field is for validation purposes and should be left unchanged.

Download Free eBook

The State of the CI/CD/ARA Market: Convergence
https://library.devops.com/the-state-of-the-ci/cd/ara-market

Most Read on DevOps.com

DevOps Institute Releases Upskilling IT 2022 Report 
May 18, 2022 | Natan Solomon
Apple Allows 50% Fee Rise | @ElonMusk Fans: 70% Fake | Micro...
May 17, 2022 | Richi Jennings
Making DevOps Smoother
May 17, 2022 | Gaurav Belani
Creating Automated GitHub Bots in Go
May 18, 2022 | Sebastian Spaink
DevSecOps Deluge: Choosing the Right Tools
May 20, 2022 | Gary Robinson

On-Demand Webinars

DevOps.com Webinar ReplaysDevOps.com Webinar Replays
  • Home
  • About DevOps.com
  • Meet our Authors
  • Write for DevOps.com
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • Privacy Policy

Powered by Techstrong Group, Inc.

© 2022 ·Techstrong Group, Inc.All rights reserved.