Radiant Security entered the market with its groundbreaking AI-powered SOC co-pilot. The industry-first solution empowers security operations centers (SOCs) to harness the power of AI to boost security analyst productivity, detect more real attacks, and greatly reduce incident remediation times.
CIO INFLUENCE: CIO Influence Interview with Russ Ernst, Chief Technology Officer at Blancco
“SOCs don’t have the time, and in many cases, the skill needed to perform a proper investigation of every incident”
Despite decades of effort, SOCs still struggle to build effective security operations programs capable of preventing breaches due to an ongoing reliance on manual effort. With increasing attack complexity, growing attack surfaces, and a declining supply of skilled analysts the situation is only getting worse; according to Verizon DBIR stats, breaches are up 581% between 2012 and 2022.
Today’s SOC model fails to overcome these crucial problems:
– Insufficient SOC Staffing: SOCs are often understaffed and struggling to complete workloads.
– Missing Real Threats: Real attacks are hidden in a sea of false positives and they are frequently missed, either partially or entirely.
– Slow, Incomplete Response: The prolonged detection and complex, manual processes result in prolonged dwell and remediation times. This enables adversaries to inflict more damage.
“It was never feasible for SOC analysts to review every alert they received. There aren’t enough hours in the day or analysts in the SOC for this to work. Instead, alerts end up being filtered out or left unaddressed, thus creating blindspots where attacks can go undetected,” remarked Barry Shteiman, CTO and Co-founder of Radiant Security. “SOCs need a way to accurately review every security alert, with the skill of their best analyst—AI makes this possible.”
The Radiant co-pilot boosts SOC effectiveness and productivity by streamlining and automating:
– Alert triage to dynamically review every security alert for maliciousness and ensure no attack is missed.
– Incident investigation, root cause analysis, and incident scope to detect real incidents and help analysts know exactly what happened.
– Incident containment and remediation to reduce response times from days to minutes.
– Escalation & approval workflows to take corrective actions.
– Resiliency improvements to reduce the likelihood of incident recurrence.
“With Radiant Security’s co-pilot, we can rest easy knowing that the repetitive and time-consuming work of triaging and investigating security alerts is being taken care of,” commented Josh Lanners, Director, IT Operations & Security at Nutcracker Therapeutics. “Thanks to the visibility provided by Radiant, I trust that any incidents have been fully vetted by the system before they reach me.”
Radiant helps SOCs find more attacks by deeply investigating every malicious alert. The output of Radiant’s automated investigation is a decision-ready summary that provides analysts with crucial context—like the root cause, incident scope, and a complete map of the attack, even if it traverses multiple data sources, users, and hosts—so they can easily understand exactly what happened.
CIO INFLUENCE: CIO Influence Interview with Bill Lobig, VP of Product Management at IBM Automation
“SOCs don’t have the time, and in many cases, the skill needed to perform a proper investigation of every incident,” commented Shahar Ben-Hador, CEO and Co-founder of Radiant Security. “Radiant makes it possible to do just that. And, by deeply scrutinizing every alert, SOCs can find more true threats and get more out of their existing security investments.”
For every malicious incident detected, Radiant’s SOC co-pilot automatically builds a customized, incident-specific response plan that identifies security issues and the containment and remediation actions that address them. Analysts are enabled to rapidly respond to the incident via step-by-step remediation instructions, one-click remediation from the UI, or via fully automated response. The result is drastically reduced response times; from days to minutes.
“By using Radiant for triage and investigation, we were able to significantly reduce response times and improve our visibility into the scope of incidents and their affected systems,” commented Mike Butler, Director-Information Security Operations at Spellman High Voltage Electronics Corporation. “Our team no longer has to sift through countless alerts manually and can focus on more strategic initiatives.”
CIO INFLUENCE: CIO Influence Interview with Lior Yaari, CEO and Co-Founder at Grip Security
[To share your insights with us, please write to sghosh@martechseries.com]