DFLabs CEO to Discuss SOC Automation Strategies at Black Hat Europe 2018

DFLabs’ founder and CEO, Dario Forte, will present a session on how security automation enables SOCs (Security Operations Centers) to address the cybersecurity skills gap at Black Hat Europe 2018. Dario Forte will cut through the hype with real world examples of how security automation and orchestration addresses shortage of skilled experts. At this event DFLabs will also demonstrate its IncMan SOAR product at Booth #1008.

 

Read the entire press release here.

DFLabs Innovative Open Framework Enables Fine Grained Integration of SOAR and Security Tools

DFLabs SOAR has released a new version of the IncMan SOAR platform that provides an open integration framework for customizing and adding new automated integrations between security tools and IncMan SOAR, without the need for complex coding. This capability enables security teams to easily add and orchestrate new functions between IncMan SOAR and third party products in order to address unique requirements and workflows.

Organizations can now extend the current IncMan SOAR product integrations with new functions they require. For example, an enterprise using  a vulnerability assessment tool may want to exclude a legacy application from being scanned due to concerns it may cause unexpected failures. A specific action, which would prevent custom scans of the application from automatically being initiated through an IncMan Runbook, can be added in just minutes.

Every IT environment is unique and has different requirements when it comes to automation of security actions,” said Michele Zambelli, CTO of DFLabs. “The IncMan SOAR open integration framework replaces the proprietary vendor orchestration model between security tools with a new open approach that puts enterprises and MSSPs in complete control of which actions they want, and don’t want, to automate for incident response.

DFLabs IncMan SOAR version 4.5 with the open integration framework is available immediately from DFLabs and its business partners worldwide.

This press release was originally published on Business Wire. Read the full press release here.

John Moran, Senior Product Manager at DFLabs to Discuss How to Overcome Incident Response Automation Roadblocks at Borderless Cyber USA 2018

DFLabs’ Senior Product Manager and security operations and incident response expert, John Moran will present a session on how to overcome the roadblocks of security automation at Borderless Cyber USA 2018 in Washington, D.C on Wednesday, October 3, 2018, at 10:00-10:30 AM EDT. In this session, Moran will use real-world incident response and computer forensic cases to explain when, where and how software can be used to safely remediate cyber threats.  He will also present best practices for developing an incident response program, assessing SOC automation and orchestration needs, and implementing SOAR solutions to automate incident response workflows and case management.

This Press Release was originally published on Business Wire. Read the full Press Release here.

DFLabs Names Security Veteran Tito Avila Vice President of Global Sales and Business Development

DFLabs, the pioneer in Security Orchestration, Automation and Response (SOAR), is pleased to announce the appointment of security industry veteran Tito Avila as Vice President of Global Sales and Business Development. Over his 20 year career, Toto Avila has helped build and manage sales teams for multinational telecom and enterprise security vendors including Fortinet and others.

Dario Forte, Founder and CEO of DFLabs, said: “We are pleased to welcome Tito Avila to the DFLabs management team. He has the international and domain experience to help DFLabs aggressively grow our market share, enter new markets and build a global sales organization.”

Tito joins DFLabs from a leading Internet and application security company, where he was VP of Sales for the Americas and EMEA. He was previously Director of Carrier and Service Provider Sales for network security vendor Fortinet, where he managed carrier/ISP sales across Latin America.

This press release was originally published on Business Wire. Read the full press release here.

 

John Moran to Reveal Best Practices for “Live Box” Forensics at SANS Threat Hunting and IR Summit

DFLabs’ Senior Product Manager and an expert in security operations, incident response, digital forensics and investigations John Moran, will present best practices for using “live box” forensics at the upcoming SANS Threat Hunting and Incident Response Summit in New Orleans on September 7, 2018.

As organizations experience an increase in complex cyber threats and advanced attack techniques, such as the use of file-less malware, security operations personnel are turning to the use of “live box” forensics in threat hunting, despite its perceived risks and pitfalls. With this in mind, John will detail the Dos and Don’ts when conducting “live box” forensics for threat hunting and provide a best practices framework for incident response teams. Moreover, he will use a newly released free Windows tool that automates data acquisition to demonstrate “live box” techniques.

Learn more about the Summit here.

This press release was originally published on Business Wire. Read the full press release here.

DFLabs Releases New Version 4.4 of IncMan SOAR Platform with Automated Triage for Incident Response

DFLabs SOAR has released a new version of the IncMan SOAR platform that uses automated event triage which will help to significantly reduce the number of cyber security incidents generated from alerts. This capability, first of its kind, called START (Simple Triage And Rapid Treatment) Triage, is being used by a major European bank to eliminate manual first line assessment of suspected fraudulent online transactions. In addition, this new version of IncMan SOAR includes even more enhancements including several new bidirectional integrations from a variety of product categories including SIEM, network defense, endpoint protection and threat intelligence, that expand its orchestration and automation capabilities even further. 

Not every alert deserves to become and be processed as a security incident, yet that is how SOAR products currently operate. The new release of IncMan SOAR is breaking this cycle,” said Michele Zambelli, CTO of DFLabs. “By applying our automation engine, enrichment and containment capabilities to events using a triage process, we can dramatically reduce the number that are turned into incidents and placed into the queue for deeper assessment by IncMan and security analysts.

The new version 4.4 with triage of DFLabs IncMan SOAR Platform will be available immediately from DFLabs and its business partners worldwide.

DFLabs will demonstrate the new version 4.4 of IncMan SOAR with triage at Black Hat booth #IC2329 on August 8-9, 2018 at Mandalay Bay in Las Vegas.

This press release was originally published on Business Wire. Read the full press release here.

DFLabs to Discuss How Orchestration Can Facilitate Knowledge Transfer and Improve Incident Response at SANS SOC Summit 2018

DFLabs’ Vice President of Professional Services, Mike Fowler will present a session on improving incident response capabilities and how to overcome the shortage of skilled security operations staff at the SANS Security Operations Center Summit on Monday, July 30, 2018 at 12 PM noon CDT.

The shortage of skilled SOC personnel worldwide is only getting worse. With increasing workloads, inexperienced security analysts need to be brought up to speed quickly so they can contribute effectively to SOC Operations. In this session, “Leveraging Orchestration to Facilitate Knowledge Transfer in Security Operations,” Mike Fowler will present a framework that combines a traditional and new knowledge transfer techniques with the help of orchestration to enable under-resourced SOCs to achieve new levels incident response efficiency and productivity.

This press release was originally published on Business Wire. Read the full press release here.

451 Research Report Says DFLabs Brings MSSPs a Holistic View of Cyber Threats and Accelerates Incident Response

DFLabs’ IncMan security, orchestration, automation and response (SOAR) platform has been cited for the ability to increase revenues, lower operational costs and deliver more value to MSSPs in the new 451 Research Report. According to the 451 Research report, DFLabs provides MSSPs with a broad set of capabilities to streamline and scale operations, improve effectiveness and efficiency and create new revenue streams.

The 451 Research Impact Report, “DFLabs brings security automation and orchestration to MSSPs,” was published on June 5 and can be downloaded here.

“MSSPs need advanced capabilities to manage, measure and maximize the effectiveness and efficiency of their operations, and aggregate analyst knowledge. But they lack the resources to build these on their own,” said Aaron Sherrill, Senior Analyst at 451 Research. “With support for granular risk factors, machine learning, semi to full automation, incident triage, playbooks and built-in integrations to over 100 cybersecurity tools, DFLabs provides MSSPs a holistic SOAR platform that accelerates responses to threats facing their customers.”

This press release was originally published on Business Wire. Read the full press release here.

DFLabs and LogPoint Team Up to Accelerate Cyber Incident Detection and Response

DFLabs, the pioneer in Security Orchestration, Automation and Response (SOAR) technology has joined forces with LogPoint, the next generation SIEM and Big Data Analytics company to provide rapid detection and faster remediation of security incidents. The combination of DFLabs’ IncMan Security Orchestration, Automation and Response and LogPoint SIEM provides end-to-end visibility to neutralize cyber threats.

“The deep integration of the LogPoint SIEM with DFLabs IncMan combines the power of each solution to create a more robust, efficient and responsive security program,” said Dario Forte, CEO, and Founder of DFLabs. “Together IncMan and LogPoint enable organizations to automate most of the work performed by security analysts, and accelerate incident detection and response actions from hours to seconds.”

“With accelerated detection and response and the added benefit of utilizing playbooks and runbooks to formalize the response handling procedure, we will provide true operational value to our customers,” said Jesper Zerlang, CEO of LogPoint. “From a business value perspective, LogPoint and DFLabs are individually delivering the best feature to price ratio in the market, but even more so as a joint solution.”

This press release was originally published on BusinessWire. Read the full press release here.

DFLabs to Present Session on State of SOAR at NXTAsia 2018 Conference

DFLabs’ Vice President of Engineering, Andrea Fumagalli will present a session at NXTAsia Conference 2018 and will use real-world cases to explain how advances in machine learning are changing security operations and incident response.

DFLabs will be exhibiting at the conference in booth #5H2-08. Visit DFLabs’ booth to see the latest from DFLabs and its IncMan SOAR platform.

This press release was originally published on Business Wire. Read the full press release here.