What is the Role of Incident Response in ICS Security Compliance?

Incident response and its data-driven nature can provide many of the reporting requirements governing industrial control system safety, finance, consumer privacy, and notifications.

Regulatory compliance in industrial environments creates unique challenges that can’t be found in traditional IT settings. A major source of this complexity originates from the pre-Internet, largely proprietary nature of industrial control system (ICS) networks, specifically their lack of open computing standards, which are taken for granted in IT networks. These closed ICS networks are very hard to upgrade and even harder to maintain in compliance with state, federal, and industry regulations.

Moreover, most ICS networks lack built-in security components, such as automated asset management, proactive security monitoring, and real-time threat analysis and prevention. In addition to this, most applicable regulations and guidelines apply to verticals such as healthcare and energy and cover ICS only either indirectly or at a very high level.

Read the entire article here.

What Happens When You Combine SOAR with Existing Security Technologies

Security teams and Security Operations Centers across the industry face many similar challenges, some of which include increased workload, budget constraints, competition for skilled analysts and repeating manual processes.

Managed Security Service Providers (MSSPs) are facing many of these challenges, multiplied by the scale at which they operate.  Enterprises across the globe are increasingly turning to Security Orchestration, Automation and Response (SOAR) solutions to address these growing challenges.

It now seems clear that SOAR is not just a feature. It is actually becoming a critical component of an advanced security program.  Our existing manual processes simply do not scale to the level they must.

Enterprises cannot continue to respond to today’s growing security threats effectively without some level of automation and orchestration.  Gartner predicts that the adoption of SOAR solutions will increase enormously over the next several years.

Read the entire article here.

DFLabs Announced a New version of IncMan SOAR Platform With Automated Event Triage

DFLabs, the pioneer in Security Orchestration, Automation and Response (SOAR) has just announced a new version of the IncMan SOAR platform that uses automated event triage to hugely reduce the number of security incidents generated from alerts.

With its unique capability the START (Simple Triage And Rapid Treatment) Triage is already used in production by a major European bank to banish manual first-line assessment of suspected fraudulent online transactions. IncMan SOAR reduces triage time by 90% for cyber fraud events generated by its mainframe and other external systems.

IncMan SOAR with START Triage will be demonstrated at Black Hat USA 2018 at their booth #IC2329 on August 8-9 at Mandalay Bay in Las Vegas.

Read the entire article here.

 

Four Reasons Why Companies Fail At Incident Response

DFLabs’s CEO Dario Forte pinpoints the main reasons why many companies today still can’t seem to create the suitable plan when it comes to incident response.

Today, a vast number of companies throughout many different industries are still exposed to continuous security breaches of various kinds. This year only, companies such as Best Buy, Delta, Orbitz, Panera, Saks Fifth Avenue, and Sears, have all been victims to some type of cyber-security threat.

Security threats have become very sophisticated with the rise of new technologies and companies need to fight them back. However, these are not always tested for security flaws and create difficult gaps for companies in their battle for protection of their assets.

Read the entire article here.

DFLabs’ Senior Product Manager John Moran on Security Weekly – The Security Podcast Network

Watch DFLabs’ Senior Product Manager, John Moran, on a live interview on Security Weekly – The Security Podcast Network for information security professionals by information security professionals, talking about what is Security Orchestration, Automation and Response (SOAR) and what problems it solves.

Watch the full live interview here.

John Moran, DFLabs – Enterprise Security Weekly #99 – 18th July 2018

DFLabs IncMan Wins the Cyber Defense Magazine 2018 InfoSec Award for Security Orchestration, Automation and Response (SOAR)

DFLabs IncMan SOAR has been named editor’s choice for Security Orchestration, Automation and Response (SOAR) for the Cyber Defense Magazine 2018 InfoSec Awards. The winners of the Cyber Defense Magazine 2018 InfoSec Awards were announced at the RSA Conference in San Francisco.

DFLabs was selected from nearly 3,000 companies, globally, because they are an innovator in security orchestration, automation and response,” said Pierluigi Paganini, Editor-in-Chief, Cyber Defense Magazine. With cybercrime accounting for more than $600B in theft and damages, DFLabs enables companies to respond and mitigate threats in a unique, automated fashion that can prevent data breaches and fraud.

Being recognized by Cyber Defense Magazine at the RSA Conference this year for our innovations and leadership in security orchestration, automation and response provides further validation for the value we provide to customers,” said Dario Forte, CEO of DFLabs.We are setting the pace in SOAR with runbook technology that uses machine learning to perform preliminary tasks using software and free up security analysts for later stage investigation steps that require human decision making.”

This Press Release was originally published on Business Wire. Read the full Press Release here.

DFLabs IncMan Recognized by Ovum for Security Orchestration, Automation and Response (SOAR)

DFLabs’ IncMan SOAR platform has been featured in the new “On the Radar” Report by Ovum. IncMan was recognized for addressing the security orchestration, automation and response (SOAR) requirements of midsize to large organizations and MSSPs in highly regulated industries and businesses, enabling them to meet stringent existing and impending requirements including the EU’s GDPR.

This press release was originally published on Business Wire. Read the full press release here.