Core SA&O Platform Capability: Playbook Management

This article is a part of a series describing the essential criteria of a Security Automation and Orchestration platform. Introduction Working from Standard Operating Procedures (SOPs) is an important way to mature your security operations. Building and maintaining the SOPs, however, requires a significant amount of up front investment and collaboration. Since Security Automation and … Continue reading Core SA&O Platform Capability: Playbook Management

The Automation Engine

This entry is part of a series that outlines key criteria to consider when evaluating Security Automation & Orchestration (SA&O) platforms. This entry focuses on the automation engine, one of eight core components of an SA&O platform. Like the orchestrator component we explored in the first entry of this series, the automation engine component is another critical area when evaluating an SA&O platform.

Top Three Criteria of an Orchestrator

This entry is the first in a series that outline key criteria to consider when evaluating Security Automation & Orchestration (SA&O) platforms. Here at Phantom, we define security orchestration as “the machine-based coordination of a series of interdependent security actions across a complex infrastructure.” Considering this definition, it’s easy to derive that one of the … Continue reading Top Three Criteria of an Orchestrator