Light Dark
June 16, 2016 By John Bruce 2 min read
Incident Response
Threat Intelligence
X-Force

The Ponemon Institute’s annual “Cost of Data Breach” study, released this week, served up a clear message: Damages from cyberattacks continue to climb, but organizations can stem these rising costs by preparing and supporting their incident response (IR) team, saving hundreds of thousands of dollars on average.

It’s long been our mission to help organizations transform their IR capabilities, and we’ve done so through our innovative Security Orchestration, Automation, and Response (SOAR) Platform. With our latest platform release, version 26, we’re delighted to launch Resilient Incident Visualization.

Incident Visualization Changes the Game

Resilient Incident Visualization is an industry first. It leverages the simple fact that actually seeing connections between incidents in a way like never before can help security analysts zero in on concerted attacks and respond in record time. It’s a simple yet powerful concept successful in, and now adopted from, other business areas.

Resilient Incident Visualization graphically displays multidimensional relationships between incident artifacts or indicators of compromise (IoCs) and incidents in an organization’s environment. Security analysts can:

  • Instantly gain intelligence, context and direction by seeing the most pertinent connections between artifacts and incidents, both past and present.
  • Immediately uncover broader campaigns targeting the organization and understand how an attack has unfolded over time.
  • Rapidly take investigative or remedial actions from directly within the visualizer, such as querying QRadar or blocking a malicious URL.

Decreasing Costs and Time

With Resilient Incident Visualization, a security analyst can instantly see that artifacts related to a malware incident (e.g., suspicious IP addresses, DNS names, malware hashes, etc.) have appeared in several past incidents. This suggests that these incidents are part of a bigger attack, and the platform provides direction on how to put an end to it.

This latest innovation comes only a few months after Resilient Systems was acquired by IBM Security. It shows that we’re committed to continuously innovating and pushing this market forward to help our customers thrive in the face of today’s cyberthreats. As part of IBM Security, we can innovate faster and more significantly than ever before.

In the end, Resilient Incident Visualization is a step change for incident response — making teams smarter and faster responders.

SIGN UP FOR A DEMO OF THE IBM RESILIENT SOAR PLATFORM TODAY

 |  |  | 
John Bruce
Chairman & CEO, Resilient Systems Inc.

More from Incident Response
July 15, 2024

Cybersecurity crisis communication: What to do

4 min read - Cybersecurity experts tell organizations that the question is not if they will become the target of a cyberattack but when. Often, the focus of response preparedness is on the technical aspects — how to stop the breach from continuing, recovering data and getting the business back online. While these tasks are critical, many organizations overlook a key part of response preparedness: crisis communication. Because a brand’s reputation often takes a significant hit, a cyberattack can significantly affect the company’s future…

May 14, 2024

3 recommendations for adopting generative AI for cyber defense

3 min read - In the past eighteen months, generative AI (gen AI) has gone from being the source of jaw-dropping demos to a top strategic priority in nearly every industry. A majority of CEOs report feeling under pressure to invest in gen AI. Product teams are now scrambling to build gen AI into their solutions and services. The EU and US are beginning to put new regulatory frameworks in place to manage AI risks.Amid all this commotion, hackers and other cybercriminals are hardly…

May 3, 2024

What we can learn from the best collegiate cyber defenders

3 min read - This year marked the 19th season of the National Collegiate Cyber Defense Competition (NCCDC). For those unfamiliar, CCDC is a competition that puts student teams in charge of managing IT for a fictitious company as the network is undergoing a fundamental transformation. This year the challenge involved a common scenario: a merger. Ten finalist teams were tasked with managing IT infrastructure during this migrational period and, as an added bonus, the networks were simultaneously attacked by a group of red…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature