Resilient Systems enhances Incident Response Platform
Resilient’s latest release provides response teams with deeper intelligence and quicker enterprise-wide deployment
Resilient Systems, the global leader in incident response (IR) solutions, announced the release of version 24 of its award-winning Incident Response Platform (IRP). The release features integrations with the IBM X-Force Exchange threat intelligence sharing platform and HP ArcSight, enabling organisations to gain insight more quickly and respond more intelligently to cyber threats and attacks of all types. The release also incorporates features aimed at large enterprises to quicken larger-scale deployments.
“Over the last five years, we’ve pioneered the incident response space by creating the first-ever Incident Response Platform. We have deployed this platform globally for more than 100 on-premise and SaaS customers, evolving in each release to meet their critical IR requirements,” said John Bruce, co-founder and CEO of Resilient Systems. “Now in version 24, the platform reflects this evolution with even more enhancements. It’s fast becoming the industry standard for organisations in need of a response solution that will improve their resilience – today and in the future.”
According to a recent independent study, “The Cyber Resilient Organization: Learning to Thrive Against Threats,” conducted by the Ponemon Institute, more than 90 percent of organisations recognise cyber resilience as an essential part of protecting core assets and business interests. Furthermore, 75 percent believe an incident response management plan is critical to achieving cyber resilience.
Based largely on insight from more than 100 Resilient Systems customers, the new enhancements to the IRP are designed to help these companies improve their resilience, so they can thrive in the face of cyberattacks and business crisis.
“In today’s cyber threat landscape, businesses need to be resilient in order to thrive in the face of attacks. Improving incident response is critical to resilience,” said Bruce Schneier, CTO of Resilient Systems. “That’s our mission, and that’s why we’re continually building new innovations into our platform that will help businesses become smarter, more prepared, and more effective responders.”
Threat intelligence and incident response improve cyber resilience
The new version of Resilient Systems’ IRP includes enhancements to its threat intelligence integrations, including:
• Leveraging IBM X-Force Exchange that allows customers to easily access data and insights from the X-Force Exchange threat intelligence sharing platform
• A deeper integration with HP ArcSight to make it easier for customers to access key information and context needed to improve their response capabilities
• Custom threat feeds that introduce the ability for organisations to integrate proprietary threat intelligence data pools or specialty threat intelligence feeds with Resilient Systems to allow for a more informed and well-orchestrated response
“Sharing threat intelligence is key to fighting the onslaught of threats that today’s organisations are facing,” said Chris Simmons, Program Director, IBM X-Force. “Resilient Systems and their customers will be joining the 2,000 companies already collaborating with the IBM X-Force Exchange in the fight against cybercrime. Using the real-time community information about evolving threats, organisations using X-Force Exchange can make faster and better informed decisions, reducing their time-to-act for active threats facing their organisations.”
With the addition of IBM X-Force Exchange, Resilient’s IRP provides access and correlation to more than a dozen threat intelligence feeds out of the box.
Effective response starts with strong context and intelligence, which is why we’ve teamed with IBM Security, strengthened our integration with HP ArcSight, and introduced custom threat feeds to empower our customers with the best information about the latest threats,” said John Bruce. “And in response to increasing demand from larger organisations, we’ve added features that make their deployments even easier.”
Built for large-scale enterprise deployments
Resilient Systems customers include more than 30 Fortune 500 companies, and the latest features to Resilient’s IRP will help ease deployments for a growing customer base of increasingly larger organisations. These features include:
• LDAP support enables security teams to manage and authenticate users of Resilient Systems from within Active Directory
• Configuration migration provides customers with large and complex systems the flexibility to easily move configurations across environments, from development and testing into production
• High availability – specific for customers with Resilient Systems installed on-premise – provides new documentation to help them maintain high availability by leveraging capabilities within their virtual infrastructure
Enhancing automation and integration
Further extending Resilient Systems’ ability to automate incident preparedness and response, a new dynamic email parsing capability enables the IRP to receive and act upon emails from employees or other IT security tools.
Based on easily customisable rules, the platform can extract information from emails to populate fields within the system, and then take sophisticated action based on the information received. Based on the ability of nearly every IT security tool to generate email alerts, this feature creates an easy way for organisations to achieve basic integration and communication between systems.