DFLabs Growing Rapidly in US and EMEA in 2017

DFLabs doubles its revenues, increases its financing and expands in the United States and EMEA in 2017. We are proud to announce that DFLabs is growing more and more rapidly on a global level, as enterprises and investors are recognizing the real need and demand for Incident Response and cybersecurity readiness.

This press release was originally published by Business Wire. Read the full article here.

DFLabs Wins Two Platinum Awards for Cybersecurity in the 2017 GSN Homeland Security Awards

DFLabs Security Automation & Orchestration platform has received platinum awards in two separate cybersecurity categories of the 2017 GSN Homeland Security Awards. IncMan took first place in the following categories: Best Continuous Monitoring & Mitigation, and Best Cyber Operational Risk Intelligence Solution.

“We are honored to have won Platinum in two categories of this year’s prestigious GSN Homeland Cyber Security Awards competition,” – Dario Forte, DFLabs CEO, announced. “Based on our background in law enforcement and intelligence, we designed IncMan to empower government agencies to monitor, detect and respond to increasingly sophisticated cyber threats using automation.”

This press release was originally published by BusinessWire. Read the full press release here.

DFLabs at Black Hat Europe 2017: Unveiling The Roadblocks to Cyber Security Automation and Orchestration

Oliver Rochford, DFLabs’ VP of Security Evangelism will present a speech and reveal the top reasons that are holding back organizations to implement software-based Incident Response at Black Hat Europe 2017 in London.

This press release was originally published by Business Wire. Read the full article here.

To schedule a conversation with Oliver Rochford, contact Marc Gendron PR for DFLabs at [email protected] or +1 781.237.0341.

DFLabs CEO and Founder, Dario Forte to Take Part in the Panel “Building and Achieving a World Class Incident Response Capability” at SINET Showcase

DFLabs Founder and CEO, Dario Forte will be attending the SINET Showcase Conference where he will take part in the panel titled “Building and Achieving a World Class Incident Response Capability” in Washington DC on November 8th, 2017.

Sharing the stage along with Devon Bryan, Executive VP & CISO, The Federal Reserve System; Mary N. Chaney, VP, Int’l Consortium of Minority Cybersecurity Professionals and, Matt Olsen, Co-Founder, IronNet Cybersecurity, he will be explaining the importance of establishing situational awareness of threats for Enterprises and Government Agencies and implementing repeatable, automated workflows to accelerate preliminary incident response steps before security analysts are needed to execute late-stage investigations and implement remediations.

For more detailed information about the event please visit the SINET Showcase official website.

This press release was originally published by BusinessWire. Read the full press release here.

If you wish to get in touch with Dario Forte, contact Marc Gendron at [email protected] or +1 781.237.0341.

DFLabs’ VP of Security Evangelism, Oliver Rochford to Present a Session at the European Cyber Threat Summit 2017

Oliver Rochford, DFLabs’ VP of Security Evangelism and, former Gartner analyst, will be presenting at the European Cyber Threat Summit 2017 on October 24th, 2017 in Dublin, Ireland.

In his presentation, Mr. Rochford will be talking about the actual and perceived impediments to automated security incident response, addressing the top three concerns to unattended Incident Response and how to overcome them in a safe manner.

To get in touch with Oliver Rochford, please contact Marc Gendron at [email protected] or +1 781.237.0341.

This press release was originally published by Business Wire. Read the full article here.

DFLabs’ Global Partner Program Launched

As DFLabs continues to grow, expanding our sales channel seems like the next logical step that will help us establish a strong presence in new markets. With this goal in mind, we have launched our first Partner Program for Cyber Security Channel, targeting resellers and MSSPs, giving them the opportunity to become part of the DFLabs Global Partner Network, in one of the three available levels of participation: Platinum, Gold and Affiliate, in addition to the unique MSSP program based on a “Pay-as-you-Grow” licensing model.

Read more about the program here.

DFLabs named in Gartner’s Competitive Landscape: Threat Intelligence Services, Worldwide 2017

DFlabs Incman is proud to be cited by Gartner in their recent report: “Competitive Landscape: Threat Intelligence Services, Worldwide, 2017”  as a representative Security Incident Response vendor for integrating with Threat Intelligence services to enable threat intelligence sharing and fusion.

The report states, “Security IR platform providers have been increasing their partnerships with Threat Intelligence providers in recent years. DFLabs is one such example, where threat intelligence is integrated within the IncMan platform, which aims to facilitate the orchestration and automation of IR activities as well as TI sharing.”

The report has been published 10.08. 2017 and co-authored by Ruggero Contu and Lawrence Pingree.

Download the report “Competitive Landscape: Threat Intelligence Services, Worldwide, 2017”  here (Gartner subscription required)

Read the original Press Release on PRLog here

DFLabs Unveils Machine Learning Powered First Responder Automation for Security Operations

DFLabs IncMan orchestrates the intelligence-driven SOC and CSIRT

BOSTON – ( BusinessWire  ) – DFLabs, the leader in Security Automation and Orchestration Technology, announced today the release of its new Playbook Recommendation and Intelligent Selection Mechanism (DF-PRISM), enhancing DFLabs security automation and orchestration with incorporated proprietary machine learning. The system uses patent-pending advanced methods and algorithms to detect operational intelligence such as security incident and resolution data to recommend playbooks and actions based on historical incident response activities. This approach minimizes the resources and time required to successfully analyze and respond to ongoing incidents while maximizing the effectiveness and efficiency of security teams.

At its core, DFLabs SAO enables security organizations to take a gradual “crawl, walk, run” path to developing effective processes for successfully responding to and managing threats as well as hardening security controls. Beginning with “Human Guided Learning” and evolving into “Human Supervised Learning”, users can create and apply simple, linear or conditional playbooks that combine manual, semi-automated and automated actions. Decision-making and conditional responses can be made manually by humans, automatically by machine, or a hybrid of the two – depending on the needs, requirements, and maturity of the organization.

Mature organizations can leverage the advanced Runbooks of DF-PRISM that support complex and stateful logical decision-making to enable an advanced and adaptive threat management program. Conditional responses that allow users to pursue a variety of alternative responses.

“In developing DF-PRISM, we have built a technology that enables users and the system to learn together and lets people determine their level of involvement in responding to and managing threats,” said Dario Forte, chief executive officer, and founder DFLabs. “Users get immediate value by tracking and responding to threats, then over time the system builds a knowledge base of responses that can be relied on to automatically manage the entire incident response process.”

According to recent research from Enterprise Strategy Group (ESG) entitled “Next Generation Cybersecurity Analytics and Operations Survey,” commissioned by DFLabs and other technology vendors, 92% of respondents have deployed, plan to deploy or are interested in deploying machine learning technology to support Automation and orchestration. The top drivers are accelerating incident detection (29%) and accelerating incident response (27%).

The research also found that 21% of respondents will deploy machine learning because they hope the technology can help maximize the productivity of their existing staff to compensate for their inability to hire enough new security operations personnel.

“Enterprises are finding it challenging to quickly respond to security incidents across a constantly growing attack surface and with limited resources, resulting in a large window of opportunity for attackers to execute the full kill chain and the potential for minor incidents to evolve into full-blown breaches , “Said Oliver Rochford, vice president of Product Marketing, DFLabs. “Augmenting analysts” smart eyeballs with machine learning will help organizations to reduce the time from breach discovery to containment, while also assisting in building, retaining and transferring institutional knowledge about past incidents and threats. ”

Innovative Threatscape Modeling

Leveraging machine learning, DF-PRISM constructs a model of the threatscape based on known and historical incidents, scoring and evaluating any incident based on unique and shared indicators and attributes and their relevance. The algorithms use this model to propose playbooks for similar or related threats. Threats known to the model are considered to have greater relevance, are scored more reliably, and are assigned a higher urgency and higher prioritization.

Key benefits include:

• Intelligence-guided false positive reduction
• Improves response time by up to 80%
• Automatically correlates and re-applies playbooks across Tenants in multi-user and MSSP environments

DF-PRISM is available immediately with version 4.2 of IncMan, which also includes:

• New Dual-Mode Playbook engines
• An advanced correlation engine
• An observable investigation view
• A unique set of features based on machine learning (ML) and supervised active intelligence to guide first responders
The current integration library is composed of over 100 different playbooks and connectors Can be customized by and shared between users without requiring scripting or coding.

About DFLabs

DFLabs – Cyber Incidents Under Control – is a recognized global leader in security automation and orchestration technology. The company is led by a management team recognized for its experience in and contributing to the information security field including the co-editing of many industry standards such as ISO 27043 and ISO 30121. Its flagship product, IncMan, has been adopted by Fortune 500 and Global 2000 organizations worldwide. DFLabs has operations in Europe, North America, and EMEA. For more information, visit  www.dflabs.com  or connect with us on Twitter @DFLabs.

This Press Release was originally published on  BusinessWire

DFLabs at Borderless Cyber USA in New York 2017

We invite you to visit us at Borderless Cyber USA 2017 in New York City on June 21-22, where our CEO Dario Forte and our VP of Professional Services Mike Fowler will show you how DFLabs IncMan – Security Automation and Orchestration Platform can help you to reduce your reaction time up to 80% with the help of Machine Learning and AI.

Borderless Cyber USA is a distinctive conference for cybersecurity stakeholders in the industries such as international business, financial services, healthcare, retail, manufacturing, utilities, international business, government, among other industries. This year the conference will focus on changing the economics of computer network defense, and the program will explore the ways to reduce costs for defenders and increase costs for attackers. C-level executives and directors of threat intelligence, incident response, risk, and audit will learn how to better evaluate and defend their cyber practices.

Our CEO Dario Forte will take part in the panel “A Threat Intelligence sharing reality-check: How standard interfaces (such as STIX and TAXII) can reduce costs and time”on June 21 from 13:00-14:15h. There you will get the unique chance to hear his expert views and insights on:

– Why threat intelligence sharing is still a somewhat contentious discussion
– What the cybersecurity community should be doing to enable solutions like STIX and TAXII to succeed
– What is inhibiting organizations from adoption of these solutions
– What cybersecurity vendors are doing to help the effort
– Why organizations should continue to believe in information sharing and how to disprove contrary theories
– And how to convert challenges into positive achievements.

We will be at table 4, so feel free to stop by and meet our CEO and VP of Professional Services to talk about the latest developments in cybersecurity.

Research Reveals Organizations Falling Behind in Cyber Security Analytics and Operations Despite Business Pressure to Improve

To Automate or Orchestrate? Enterprise Strategy Group survey calls for guidance and a shift toward accelerating Security Operations

BOSTON–(BUSINESS WIRE)–DFLabs, the leader in Security Automation and Orchestration Technology, announced today the release of new research from Enterprise Strategy Group (ESG), commissioned by DFLabs and other technology vendors, which shows that when it comes to the evolution of Cybersecurity Analytics and Operations, 71% of respondent organizations find it more difficult today than it was two years ago due to the changing threat landscape, followed by volume of alerts and increased regulatory changes.

“Despite businesses making it a priority, there is great confusion on how to make sense of and integrate Security Analytics and Operations. Most organizations are dealing with 10 to 25 technologies ranging from SIEMs, vulnerability assessment, endpoint detection, threat intelligence and user behavior to incident response. They are challenged with the total cost of operations and spending too much time on emergency issues,” said Jon Oltsik, Senior Principal Analyst, ESG.

This need for strategy and process improvements is why purchasing security operations tools designed to help organizations automate and orchestrate security operations processes was cited as the second highest priority respondent organizations will take over the next two years. The majority (90%) of respondent organizations are planning to deploy, or have somehow deployed, technologies designed for Automation and Orchestration.

The research also revealed that Automation is a higher priority (66%) than Orchestration (31%) – pointing to the need for a maturity model to guide security operations centers (SOCs) and cybersecurity professionals on their journey.

Added Oltsik, “There is a lot of hype but these are not turnkey solutions. Most organizations start by employing automation to the most time-consuming low-level tasks, such as integrating external with internal IOCs; whereas orchestration, such as building a run book, requires more thought and planning and attention. We found a great need for a ‘guided’ approach to full automation and orchestration and DFLabs is the only vendor today to do both.”

Finally, the survey found a shift in focus from threat detection to incident response. Eighty-six percent (86%) of respondent organizations are currently using or plan to use an incident response platform while 92% have deployed, plan to deploy or are interested in deploying Machine Learning technology to support Automation and Orchestration – with accelerating incident response as a top driver.

“This research validates our vision for Supervised Active Intelligence (SAI)™. By giving customers a path from machine-to-human to machine-to-machine operations, we gradually guide them on the maturity curve to full automation and orchestration – without losing the element of human control,” said Dario Forte, CEO, DFLabs. “Based upon an innovative machine learning and incident correlation engine, DFLabs offers a force multiplier solution that helps security operations and incident response teams quickly orchestrate the triage, containment, reporting, and remediation of data breaches and other cyber incidents.”

Surveying 412 IT professionals and cybersecurity professionals across a broad range of industry verticals, the multi-client research, titled “Next Generation Cybersecurity Analytics and Operations Survey,” seeks to better understand the evolution of the market including requirements, skills, challenges, and technology adoption plans.

Other key highlights include:

– Eighty-one percent (81%) strongly agree or agree that improving Security Analytics and Operations is a high priority
– 78% strongly agree or agree that they have a formal plan and funding to improve Security Analytics and Operations
– 72% strongly agree or agree that business management is pressuring the cybersecurity team to improve Security Analytics and Operations

– Eighty-two percent (82%) will increase spending in Security Analytics and Operations

In-depth data is also available upon request on the topics of staffing, security operations centers (SOC), managed security services, security data collection, threat intelligence, and technology integration.

To request a copy of the research please visit: https://goo.gl/UGM8oY

About DFLabs

DFLabs is a recognized global leader in Security Automation and Orchestration. The company is led by a management team recognized for its experience in and contributions to the information security field including co-edited many industry standards such as ISO 27043 and ISO 30121. IncMan – Cyber Incidents Under Control – is the flagship product, adopted by Fortune 500 and Global 2000 organizations worldwide. DFLabs has operations in North America, Europe, Middle East, and Asia with US headquarters in Boston, MA and World headquarters in Milan, Italy. For more information visit: http://www.dflabs.com or connect with us on Twitter @DFLabs.

Contacts
Kesselring Communications
Leslie Kesselring, 503-358-1012
[email protected]