DFLabs is proud to announce its technical certification with McAfee ePO and DXL to unify threat detection, response, and remediation through bidirectional integration. The integration of DFLabs IncMan SOAR platform and McAfee’s products will help their customers’ to deploy end-to-end security solutions for faster and more automated detection and response to cybersecurity threats, as well as orchestration of remediation efforts.
This press release was originally published on Business Wire. Read the full press release here.
Cybersecurity Insiders, one of the world’s leading news sources for information security professionals, has published a review of the DFLabs’ IncMan Security Orchestration, Automation and Response platform, highlighting its signature R3 Rapid Response Runbooks model as a distinguishing feature that sets it apart from its competitors.
Read more about the review here.
DFLabs IncMan – Security Automation & Orchestration Platform is honored to have won the Bronze Softshell Vendor Award.
DFLabs is pleased to win the Bronze Softshell Vendor Award in the third edition of the Softshell Vendor Report 2017 . We are happy to have been featured in the report, recognized for its high-quality level of information, insights, and intelligence within the B2B cybersecurity industry.
Softshell is a cybersecurity solutions distributor with its headquarters in Munich, Germany. Unlike other distributors, who cover a broad scope of Information Technology vendors and solutions, Softshell has its exclusive focus on cybersecurity vendors.
Download the report “Softshell Vendor Report 2017” here.
IncMan 4.0, DFLabs’ flagship platform, to help cybersecurity operations and incident response teams tackle automation challenges with machine learning
Boston – February 7, 2017 – DFLabs, the leader in Security Automation and Orchestration Technology, announced today the launch of a landmark release of its flagship platform, IncMan 4.0. Based upon an innovative machine learning and incident correlation engine DFLabs offers a force multiplier solution that helps security operations and incident response teams quickly orchestrate the triage, containment, reporting, and remediation of data breaches and other cyber incidents while gradually guiding them on the maturity path to full automation.
The pace of cyber attacks combined with data breach and privacy regulations are making security operations platforms mandatory for organizations of all sizes. DFLabs has conducted months of discussions with dozens of Fortune 1000 CISOs showing that taking the “human” completely out of security automation may be dangerous. Significant concerns with making a sudden switch to fully unattended automation include complex issues such as “Trust on Input,” e.g. If the input data is incorrect, the output could cause even more damage to the business than the incident itself and “Proof of Evidence,” e.g. An unattended full automation response computer can not be a case for a compliance violation and can leave CISOs exposed to avoidable and excessive legal liability.
With IncMan 4.0, DFLabs delivers on its vision for Supervised Active Intelligence™ (SAI) driven by the industry’s first Dual Mode Playbooks (Machine-to-Human and/or Machine-to-Machine). IncMan includes hundreds of playbooks – based on U.S. and UE international industry regulations (including GDPR), standards and best practices. These playbooks are automatically assigned and dynamically applied to an incident to provide the Security Operations Center (SOC) and Incident Response (IR) teams full control of the situation until they are ready for the next step, at which point the machine learning algorithm takes over the process and brings the organization to the next level of automation.
“Progress of enterprise security organizations towards orchestration spanning multiple functional teams is advanced in part by deep, console-based platforms,” said Dan Cummins, Senior Analyst Security, 451 Research. “SOC product buyers should focus not only on acquiring programmable, process-centric expertise of current practitioners but also on establishing an agile foundation to meet future cyber security risks as well.”
IncMan 4.0 is also the only solution available with an innovative Knowledge Base that reduces the amount of time spent on the lifecycle of an incident. The Knowledge Base is managed and updated by the DFlabs dedicated research team and includes threat catalogs, frameworks, standards, regulations and more. Incident response orchestration can be enhanced with actionable intelligence to provide effective direction in assisting the SOC and IR teams in creating and executing a response plan as well as for conducting risk analysis and demonstrating compliance with state, federal and international breach regulations.
A complete and thorough orchestrated incident response plan utilizing IncMan 4.0 has shown to save many organizations significant time in mitigating security issues, resulting in up to 80% reduction in reaction time.
“CISO’s are under heavy scrutiny and pressure to adopt the latest innovation in security automation, yet they are not ready to suddenly and irreversibly replace humans with technology. They must have the ability for their security teams to supervise the intelligent role of the machine – at least at the beginning of their journey,” said Dario Forte, Founder and CEO, DFLabs and internationally recognized ISO standards expert. “This is the basis for the design and development of our Supervised Active Intelligence paradigm that we believe is the only effective path to full automation.”
IncMan 4.0 offers a single, transparent “pane of glass” through which organizations can automate and orchestrate their entire security operations. It is an out-of-the-box platform featuring an intuitive interface and workflow combined with flexible use cases and reporting to meet the needs of any industry. Triage, Containment and Remediation operations can be navigated through the configurable, role-based dashboard. In addition to the Dual Mode Playbooks and Knowledge Base, other innovative features include:
• Integration Ecosystem: Any data source can be easily consumed and IncMan 4.0 features native integrations with the entire cybersecurity ecosystem of data sources to “connect all the dots” within the security operations and incident response process from end-point detection and response and malware analysis to threat intelligence services, through support for STIX and TAXII OpenIOC, and IODEF, as well as integration with commercial threat intelligence, feeds.
• Correlation Visualization Engine: Visualizing the correlation between incidents and artifacts allows analysts to promptly apply industry recognized response and mitigation actions.
• Threat Intelligence Sharing: This correlation capability also ensures that both corporate and government data security organizations can effectively and bi-directionally share new threat intelligence and after action reports.
“Automation and machine learning are in strong demand in InfoSec. On the other hand, we should not forget that Machine Learning and Artifical Intelligence are still relatively new to get applied in businesses. Model design is crucial to consider social factors, human judgment on values, and sensitivity for possible bias. That’s why a guided path to full automation could be advisable, especially for critical applications such as security operations,” said Dr. Anastassia Lauterbach, Advisory Board Member of DFlabs.
Demo and trial of IncMan 4.0 are available immediately. DFLabs Professional Services Team is also available for Breach Readiness and IR Plans to help organizations achieve the appropriate plan, whether it’s guiding security teams through the process or augmenting their internal team.
DFLabs is a recognized global leader in cyber incident response automation and orchestration. The company is led by a management team recognized for its experience in and contributions to the information security field including co-edited many industry standards such as ISO 27043 and ISO 30121. IncMan – Cyber Incidents Under Control – is the flagship product, adopted by Fortune 500 and Global 2000 organizations worldwide. DFLabs has operations in North America, Europe, Middle East, and Asia with US headquarters in Boston, MA and World headquarters in Milano, Italy. For more information visit: http://www.dflabs.coms! or connect with us on Twitter @DFLabs.
Leslie Kesselring, Kesselring Communications
DFLabs previews new cyber incident response playbook for Asian regulatory environment
Boston – November 7, 2016 – DFLabs, the global leader in cyber incident response automation and orchestration, announced today its Vice President of Engineering, Andrea Fumagalli, will present on “Standardizing Data Breach Response: State of the Art” at Data Privacy Asia 2016, to be held November 9-11 in Singapore at the One Farrer Hotel & Spa. DFLabs will also preview a new playbook dedicated to breach notification, response and compliance activities specific to the Asian regulatory environment.
One of the largest data sets on the market, the IncMan RP playbook is a unique new module of the company’s cyber incident response automation and orchestration platform, IncMan. The playbook is based on U.S. and EU regulations and industry standards and gives customers immediate access to a large number of pre-built incident and data breach response actions to follow. Providing the most playbooks available today to handle the entire breach response process – from technical to operational and legal – it is divided into state/federal, industry sector and type of incident/breach segments and works with both human and machine based processes.
“Active data breach and privacy regulations are making incident response platforms mandatory and our commercial and government customers in Singapore and Asia are working very hard to establish the right framework for cyber incident and breach response. As the first mover in fast growing categories of Security Operations, Analytics and Reporting (SOAR) and Security Incident Response Platforms (SIRP), we are happy and proud to participate in this important event, educate on global standards and best practices, and serve customers with our unique new playbooks,” said Dario Forte, Founder and CEO of DFLabs.
In his Data Privacy Asia 2016 session on Wednesday, November 9th from 4:00pm- 4:30pm, Fumagalli will cover the recent progress made by ISO (International Organization for Standardization) in the field of Incident and Data Breach Response. In the past 36 months 5 standards have been published, with the purpose of providing practitioners and evaluator a series of tools – based upon consensus – able to support Cyber Security Operations and Breach Response. As one of the most recognized experts in ISO standards, he will give an overview on the entire spectrum, along with some insights on how to implement them within any size of organization, including an overview of the available technologies to automate and orchestrate incident management and response.
“These developments further our vision of Supervised Active Intelligence® to combine automation, orchestration, and response in one powerful platform, giving cyber operations and incident response teams the ability to react faster globally while maintaining the critical element of human control,” added Forte.
DFLabs is a recognized global leader in cyber incident response automation and orchestration. The company is led by a management team recognized for its experience in and contributions to the information security field including co-edited many industry standards such as ISO 27043 and ISO 30121. IncMan – Cyber Incidents Under Control – is the flagship product, adopted by Fortune 500 and Global 2000 organizations worldwide. DFLabs has operations in Europe, North America, Middle East, and Asia with US headquarters in Boston, MA and World headquarters in Milano, Italy. For more information visit: DFLabs or connect with us on Twitter @DFLabs.
Leslie Kesselring, Kesselring Communications
The new playbook set, called IncMan RP, is one of the largest data sets on the market, granting companies of any size the opportunity to get cyber incidents quickly under control.
Milan, Italy; Boston, MA (PRWEB) June 21, 2016
DFLabs, the leader in incident response automation and orchestration technology, has announced the availability of a new playbook set called “IncMan RP,” based on U.S. and EU regulations and industry standards. With this new set, customers will have immediate access to a large number of pre-built incident and data breach response actions to follow. The playbook is divided into state/federal, industry sector and type of incident/breach segments and works with both human and machine based processes.
The new IncMan playbook set contains automated and semi-automated workflows and procedures for responding to security incidents and privacy breaches. Also included are associated flow charts which show the movement of activities.
Breach data items and related actions in the playbook set are compliant with U.S. state and territory breach notice laws, as well as HITECH/HIPAA Act breach notice requirements. Updates are provided over time via DFLabs annual subscription, in compliance with any other breach notice laws or regulations that are created. The same steps are followed in regards to EU GDPR breach requirements, with updates being applied over time regarding any additional breach notice laws or regulations that are created in EU countries.
“This is the first playbook set in the market with such a large data set and flexibility, and it is able to be used in both large and mid-size corporations, directly or via MSSP,” said Dario Forte, founder and CEO of DFLabs. “With DFLabs’ IncMan, the security operations and incident response team will be able to automate both human and machine actions and have cyber incidents quickly under control.”
According to the Ponemon Institute, although the average cost of mitigating a breach is up 29% since 2013 (at about $4 million per incident), there was good news in that companies that have incident response plans and teams in place saw an average savings of $400,000 over companies that did not. Furthermore, the active data breach and privacy regulations in the U.S and E.U. are making incident response platforms mandatory. DFLabs’ IncMan is the leading platform for incident response automation and orchestration, and can help enterprises prepare, respond and be compliant.
For more information about the report, please go to: http://www.infosecurity-magazine.com/news/data-breach-costs-soaring/)
The release of this innovative software package comes during a very important time for the company, which recently announced its initial round of funding from Evolution Equity Partners, along with the acquisition of new corporate customers in the United States, EMEA and APAC.
DFLabs – Cyber Incidents Under Control – is a recognized global leader in automated incident and breach response and orchestration. The company is led by a management team recognized for its experience in and contributions to the information security field including the co-editing of many industry standards such as ISO 27043 and ISO 30121. Its flagship product, IncMan, has been adopted by Fortune 500 and Global 2000 organizations worldwide. DFLabs has operations in Europe, North America and EMEA. For more information, visit http://dflabs.com/ or connect with us on Twitter @DFLabs.