SOURCE: Demisto

Demisto

May 25, 2016 09:00 ET

Demisto Extends Its Security ChatBot With Industry Leading Security Products to Cover Entire Security Incident Lifecycle From Creation to Close

Integration Partners Include Carbon Black, Check Point and CrowdStrike to Solve Growing SOC Challenges by Automating Cross Product Workflows and Enabling Collaboration to Scale Security Analysts' Activities

CUPERTINO, CA--(Marketwired - May 25, 2016) - Demisto, Inc., creator of the first security ChatBot to revolutionize Security Operations, today announced growing industry partnerships and integration traction for its Demisto Enterprise Security Operations Platform as the company launches and exits from stealth mode today. Demisto Enterprise is the industry's first comprehensive solution to combine intelligent automation and collaboration to improve Security Operations Center productivity and incident management processes.

Demisto is seeing rapid adoption of its solution and integrations through its open API by a wide variety of security products, including threat intelligence, SIEM, network security, endpoint detection and response; from companies such as Check Point Software, VirusTotal, IBM X-Force Exchange, Palo Alto Networks, Carbon Black, CrowdStrike, Splunk, Tanium, Intel Security, FireEye, Exabeam, and many others. In addition, Demisto has integrated many open-source projects used by forensics experts. Now organizations for the first time can cover the entire security incident cycle, from incident creation and investigation, to closing and reporting. With Demisto, security analysts can finally scale their time and effort while working collaboratively.

The security industry offers best-of-breed solutions which serve a single purpose well, however that strategy of defense and response has proven ineffective against today's complex cyber threats. Now, Demisto Enterprise enables cross product automation and collaboration among analysts so organizations can amplify the value of each product through cross product workflows. Demisto brings the power of integrated solutions together and enhances them for effective response and data enrichment during investigation. In addition, for Managed Security Service Providers (MSSPs), this multi-tenant solution represents an opportunity to provide another remotely managed service to their customers with strong margins and reduced operational cost for SOC operations.

"Demisto's unique approach with its automated bot, coupled with Check Point's team of experts, provides strong insight and remediation for various different types of threats," said Alon Kantor, vice president of business development, Check Point. "Check Point's ThreatCloud Incident Response instantly responds to help customers contain the threat, minimize losses and return to business as usual. The combined power of automation together with custom security controls, real-time remediation and the ThreatCloud Intelligence Feeds, brings to market a strong incident response solution."

Demisto has a broad list of integrations out of the box so customers can integrate all the products in their environments with Demisto Enterprise with ease. Demisto Enterprise already integrates with a growing list of more than 30 products, including security products as well as collaboration and notification platforms such as Slack and PagerDuty. Demisto also supports multi-tenancy which makes it easy for MSSPs and incident response service organizations to adopt the solution and increase team productivity while helping their customers.

By integrating with Demisto Enterprise, partners enable their products with the industry's first Bot-powered security ChatOps platform for automating playbooks and response tasks, and detecting duplicate incidents. The unique combination delivers automated investigation and response workflows, and auto documentation of evidence; while providing collaboration and transparency for IT teams and management.

"This integration is a fantastic example of Carbon Black's vision for integrated and collaborative solutions, taking full advantage of Carbon Black's API to expose rich and meaningful data to analysts from within the Demisto platform," said Tom Barsi, Senior Vice President Business Development at Carbon Black. "Carbon Black's unmatched endpoint visibility and incident response features together with Demisto workflow-driven structure create a truly unique and valuable solution for orchestrating a response to security incidents."

"As a clear example of the value we bring to customers, we are pleased to offer the benefits of integrating with market leading products from vendors such as Check Point and Carbon Black," said Dan Sarel, Demisto co-founder and VP, Products. "Integrating with Check Point's threat prevention systems allows customers to quickly and efficiently respond to cyber-attacks utilizing the advanced network security already in place. Demisto's integration with Carbon Black and CrowdStrike brings an unparalleled wealth of data about the endpoints and threat intelligence into investigations and allows customers to respond at the individual endpoint level."

With Demisto, for the first time, IT security operations teams have a collaborative interface that enables analysts to chat, take notes, run queries against security products and trigger response actions from an incident's "war-room" to increase productivity, sharing and learning. Demisto Enterprise's playbook-driven incident management processes help security operations teams respond faster to incidents and be better prepared. It is also the only system with complete journaling and evidentiary support for forensics information, chats and notes. The solution has already gained traction with enterprises and MSSP partners by scaling their skills resources with automation and collaboration.

Demisto Partner Program
For access to the API, and more information on integrating with Demisto, see http://www.demisto.com/partners.

About Demisto
Demisto helps Security Operations Centers scale their human resources, improve incident response times, and capture evidence while working to solve problems collaboratively. Demisto Enterprise is the first comprehensive, Bot-powered Security ChatOps Platform to combine intelligent automation with collaboration. Demisto's intelligent automation is powered by DBot which works with teams to automate playbooks, correlate artifacts, enable information sharing and auto document the entire incident lifecycle. Demisto is backed by Accel and has offices in Silicon Valley and Tel Aviv. For more information visit www.demisto.com or email info@demisto.com.

Demisto is a registered trademark of Demisto in the United States and other countries. All other company and product names are either trademarks or registered trademarks of their respective companies.

Contact Information