Automate Security Response With Cortex XSOAR and Recorded Future

Automate Security Response With Cortex XSOAR and Recorded Future

November 25, 2020 • The Recorded Future Team

Adversaries are using automation to scale their efforts and increase their success rates. Staying a step ahead requires organizations to take a similar approach — fighting automation with automation.

SecOps and incident response teams are doing just that as they embrace SOAR technology to reduce mean time to detection (MTTD) and mean time to response (MTTR). Yet, to realize the full promise of automation, these teams need a way to centralize actionable intelligence from the broadest range and variety of sources, expanding far beyond external logs and data to drive swift, confident decisions. In today’s world of fast-moving threats, coupled with a massive cyber skills shortage, every decision advantage organizations have makes a difference.

Disrupting Adversaries With Automation: Recorded Future and Cortex XSOAR

At Recorded Future’s Predict 2020 conference, Prasen Shelar, senior product manager at Palo Alto Networks, showcased the powerful combination of Recorded Future and Cortex XSOAR, which enables security teams to dramatically improve threat visibility and accelerate incident response. Watch the full session here:

Pivoting from one workflow to another system to access intelligence wastes valuable time and resources. By integrating elite security intelligence from Recorded Future directly into Cortex XSOAR, security teams automatically access the rich context required to make better, faster decisions — without disrupting workflows. This empowers them to:

  • Automate Recorded Future enrichment of IPs, URLs, domains, and file hashes as playbook-driven tasks within Cortex XSOAR
  • Access related entities for an indicator in Recorded Future from Cortex XSOAR in real time
  • Leverage hundreds of Cortex XSOAR product integrations to further enrich Recorded Future alerts and coordinate response across security functions
  • Run thousands of commands (including commands for Recorded Future) interactively via a ChatOps interface, while collaborating with other analysts and Cortex XSOAR’s chatbot

Learn more about Recorded Future’s integration with Cortex XSOAR, and find Recorded Future in the Cortex XSOAR Marketplace.

New call-to-action

Related Posts

SolarWinds: The CSO Perspective

SolarWinds: The CSO Perspective

January 11, 2021 • The Recorded Future Team

Q&A with Gavin Reid, Recorded Future CSO Information is still coming to light surrounding...

Security Intelligence Handbook Chapter 6: How to Prioritize Patching with Vulnerability Intelligence

Security Intelligence Handbook Chapter 6: How to Prioritize Patching with Vulnerability Intelligence

January 5, 2021 • The Recorded Future Team

Editor’s Note: Over the next several weeks, we’re sharing excerpts from the third edition of...

SolarWinds Attribution: Are We Getting Ahead of Ourselves?

SolarWinds Attribution: Are We Getting Ahead of Ourselves?

December 30, 2020 • John Wetzel

Note: This blog is an abstract of an in-depth analysis on SolarWinds attribution Download the...