SprwLabs
/sprw-labs-attempt-2/code_snippet-t2c05.jpg)
soar, security automation, crowdstrike, edr, unwanted software
Use Case: Removing Unwanted Software
You've taken away administrative privileges on employees desktops but users still maintain various unwanted programs. You can easily pull a list of these programs however how do you go about removing them? In this case we'll look at how you automate software removal. For the purpose of this article we will focus on Crowdstrike however most...
/sprw-labs-attempt-2/linkedin-sales-solutions-VtKoSy_XzNU-unsplash-m71a8.jpg)
soar, security automation, hiring
SOAR Security Analyst Interview Questions
Security Automation Orchestration and Response (SOAR) has a unique set of analyst requirements such as software development, general security security tooling knowledge and API experience. These requirements are difficult to find and staff. Simply put, they're the reason we exist. However, many organizations prefer to build the team out...
soar, security automation, incident response
Staffing & Operationalizing SOAR
Congratulations! You've just taken a big step forward and are now the proud owner of a SOAR. This blog post will help you evaluate, design, and scope your SOAR project to ensure that you have the right team and resources in place to make it successful. While this post won't cover the specifics of how to design a successful SOAR, it'll provide a...
soar, security automation, incident response
Building Blocks
Utopia. That's where every SOAR conversation starts. Sadly, that's not day 1 of a SOAR deployment. Security operations is compromised of a plethora of tools and processes. Building a security automation requires understanding of how your security operations center functions. There are no fully built out playbooks. When we start out creating...
The SOAR RFP
Have you been looking at SOAR? Did you create an RFP? Did every vendor say respond yes to every question? For a consumer, this is the most difficult step of purchasing a SOAR tool. Since you can write arbitrary code, any task may be accomplished via the SOAR tool. As a result, the answer to every question is “Yes.” The problem is should do certain...
/sprw-labs-attempt-2/entrepreneur-593361-s2e50.jpg)
Is My Organization Ready for SOAR?
Gartner has spent the last 5 years touting the benefits of automation and they’re right! Automation has the potential to revolutionize how a security organization operates. They have however completely disregarded how to consume automation. Bringing automation into an organization doesn’t start with a tool, technology, or person. It starts with a...