IR Automation: Recent Research by ESG

Last week, I had a chance to catch-up with Jon Oltsik at Splunk .Conf in Orlando.  Jon frequently covers the emerging security automation and orchestration market.  If you are interested in this technology, I recommend following Jon’s blog.

Jon also shared a great video recap of his recent research on security automation and orchestration.  The run time is less than 5 minutes.  Here are a few highlights:

  • Companies see a tremendous volume of alerts – more than they can handle or staff to handle assuming they could fund the positions and find qualified candidates.
  • As a result, most (75%) are simply ignoring actionable security alerts.
  • Nearly all have automation/orchestration projects underway or are considering them in next 24 months.


The results are consistent with stats & stories we hear, and timely with respect to an announcement we made this week with Booz Allen Hamilton.

Our strategic partnership with Booz Allen brings together their extensive experience in architecting and implementing security solutions, with our market leading security automation and orchestration platform.  Phantom Playbooks are a great way for Booz (and others) to codify security processes for their clients, and drive efficiency and consistency in how alerts are managed.

Join Phantom CEO, Oliver Friedrichs, on Friday to hear more about our vision and strategy, as well as our partnership with Booz Allen.  Brad Medairy, Senior Vice President of Booz Allen’s Strategic Innovation Group, will join Oliver to share his insights too.

CP Morey
VP, Products & Marketing

About Phantom:
Phantom, which was recognized as the most innovative company at the 2016 RSA Conference, automates and orchestrates key stages of security operations from prevention to triage and resolution; delivering dramatic increases in productivity and effectiveness. Ranging from simple automation to fully autonomous response, Phantom lets you choose the best balance that fits your organization’s needs while increasing security and accelerating security operations. Focused on closing the security gap by enabling enterprise security operations to be smarter, faster and stronger; Phantom provides the flexibility to connect in-house and third-party systems into one consolidated, integrated and extensible platform. Phantom was founded by enterprise security veterans Oliver Friedrichs and Sourabh Satish who have helped propel companies like Symantec, Sourcefire, Cisco and others to success. For more information visit: