Demisto Announces a Splunk App

Demisto Announces a Splunk App and Mega-level Sponsorship of Splunk .conf2016 — Demisto will Highlight Intelligent Bot-powered Security ChatOps Platform for Automating Playbooks, Response Tasks and Collaboration on .conf2016 Expo Floor.


Demisto, Inc., an innovator in Security Operations technology, today announced its new Splunk app and a Mega-level sponsorship of .conf2016: The 7th Annual Splunk Conference. Demisto will demonstrate its ChatOps-based Demisto Enterprise Security Operations Platform for greatly improving security operations center (SOC) collaboration and efficiency in addressing security incidents in its booth number M1 at the event this week.

The newly announced Demisto Splunk App enables customers to send Splunk incident data directly to the Demisto Enterprise platform. With this new app, customers can accelerate the incident management and response process by automating the entire flow, starting from the Splunk alert through to an incident playbook automation in Demisto, helping increase SOC efficiencies. The app can be downloaded from the Splunkbase website.

Demisto Enterprise’s intelligent automation is provided by DBot, a security chatbot. DBot automates actions across security products and correlates artifacts across incidents by using sophisticated patterns and powerful search capabilities. DBot searches through past and ongoing forensic investigations, and proactively alerts the users when duplicate or related incidents are identified. The playbooks were developed by security and incident response experts, following National Institute of Standards and Technology (NIST) and other regulatory documents. To create new best practices, additional playbooks can be created by users to satisfy compliance and audit requirements, or for interactive modeling and training of analysts.

“We are thrilled to bring the automation and collaboration capabilities of Demisto Enterprise to Splunk customers,” said Slavik Markovich, Demisto CEO & co-founder. “With Demisto leveraging Splunk software, our customers can automate investigation and response for alerts triggered by Splunk® Enterprise or Splunk Enterprise Security (ES). Demisto’s use of Splunk solutions also allows for interactive investigation via an intuitive chat interface, enabled by security data queried from Splunk ES.”

.conf2016 will feature more than 175 technical sessions, including more than 80 customer presentations, and is expected to attract IT, security and business professionals who know the value of their data. The conference will be held Sept. 26-29 at The Walt Disney World Swan and Dolphin Resorts, Orlando, Fla., with three days of optional education classes through Splunk University, Sept. 24-26.

.conf2016 attendees will learn how to gain Operational Intelligence from machine-generated data by improving customer experience and service delivery, enhancing IT performance, shipping better code faster, providing timely business insights, or reaching new levels of security in their organization. With more than 50 percent of the Fortune 100 in attendance, it’s the best place to learn how leading companies are using Splunk. Attendees will share best practices, discover new features and ways to implement Splunk software to gain insights from their data. Register for .conf2016. At the conference, follow us on LinkedIn and Twitter @splunkconf (all conversations tagged #splunkconf16).


via:  enterprise-security-today

Save pagePDF pageEmail pagePrint page

Leave a Reply

Your email address will not be published. Required fields are marked *