MITRE ATT&CK
by Dev Elopers - May 20, 2022
...
Why MITRE Calls SOAR “Indispensable” in its Latest Book-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
Why MITRE Calls SOAR “Indispensable” in its Latest Book
by Shriram Sharma - May 19, 2022
MITRE Corp’s recently published book, 11 Strategies of a World-Class Cybersecurity Operations Center, is a must-read for security operations center (SOC) teams and just about anyone interested in infosec. The book is written for professionals who work in a SOC, but applies to any security operations...
See the Evolution of the MITRE ATT&CK Framework from 2015 to Now-post_thumbnail
  • MITRE ATT&CK
See the Evolution of the MITRE ATT&CK Framework from 2015 to Now
by Shriram Sharma - April 22, 2022
If you are a cybersecurity practitioner, you probably know what ATT&CK is all about. But just for those who aren’t aware, here’s a quick refresher on this revolutionary threat intelligence framework. So what is the MITRE ATT&CK framework? ATT&CK, which stands for Adversarial Tactics, Tec...
MITRE ATT&CK For Dummies-post_thumbnail
MITRE ATT&CK For Dummies
by Walker Banerd - June 18, 2020
The MITRE ATT&CK Matrix for Enterprise is the world’s largest database of cyber adversary tactics, techniques, and procedures. In fact, it’s so comprehensive that it can be hard to know how to start using it in your security operations. In this book, you’ll discover exactly wha...
10 Reasons to Use MITRE ATT&CK (and how to get started)-post_thumbnail
  • MITRE ATT&CK
10 Reasons to Use MITRE ATT&CK (and how to get started)
by Walker Banerd - June 16, 2020
We recently released our exclusive Ebook MITRE ATT&CK For Dummies. It’s a definitive resource about why ATT&CK is so valuable and how to use it in your security operations. The topic is of great interest to us at D3 because of how deeply embedded ATT&CK is in our SOAR platform. In this b...
MITRE ATT&CK For Dummies-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
MITRE ATT&CK For Dummies
by Walker Banerd - May 7, 2020
Everyone knows the “For Dummies” series of books. In fact, I’d wager you’ve read several over the years when you needed to learn about a new topic in an accessible but informative way. I know I have. That’s why I’m excited to announce that D3 has teamed up with the folks behind the “Dummies” books [...
Demo the Next-Generation SOAR with MITRE ATT&CK-post_thumbnail
Demo the Next-Generation SOAR with MITRE ATT&CK
by Alex MacLachlan - February 6, 2020
...
Four Ways to Leverage MITRE ATT&CK in Your Security Operations-post_thumbnail
Four Ways to Leverage MITRE ATT&CK in Your Security Operations
by Walker Banerd - January 27, 2020
The MITRE ATT&CK Framework is a comprehensive matrix of adversary behaviors, based on MITRE’s research into thousands of real-world cybersecurity incidents. The potential value of ATT&CK as a resource is widely acknowledged, but many security teams still struggle to operationalize it effecti...
Common Obstacles to Leveraging MITRE ATT&CK and How D3 Can Help-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
Common Obstacles to Leveraging MITRE ATT&CK and How D3 Can Help
by Walker Banerd - December 21, 2019
It is widely agreed upon in the security world that the MITRE ATT&CK Framework is a valuable tool for security teams to wield in their never-ending fight against sophisticated adversaries. Among other benefits, ATT&CK brings “behavior-based” (as opposed to “signature-based”) detection into t...
Monitor Module Overview: Bringing MITRE ATT&CK into SOAR-post_thumbnail
Monitor Module Overview: Bringing MITRE ATT&CK into SOAR
by Walker Banerd - December 18, 2019
Monitor Events, Indicators, and Artifacts in Real Time D3 SOAR’s interface has recently been overhauled to reflect how D3 enables proactive threat hunting, attack analysis, and event triage through MITRE ATT&CK. The Monitor module shows this evolution most clearly, with a home screen that maps e...
How MITRE ATT&CK Enhances Gartner’s Value Categories of SOAR Solutions-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
How MITRE ATT&CK Enhances Gartner’s Value Categories of SOAR Solutions
by Walker Banerd - December 13, 2019
Toward the end of 2018, Gartner published its Emerging Technology Analysis of SOAR solutions (Ahm, December 7, 2018). In this piece, the author laid out three “value categories” for SOAR that represent the different varieties of value of which all SOAR solutions offer some combination. In the year s...
How to Leverage MITRE ATT&CK in Your Security Operations with D3 SOAR-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
How to Leverage MITRE ATT&CK in Your Security Operations with D3 SOAR
by Walker Banerd - September 27, 2019
The MITRE ATT&CK matrix has gained widespread recognition in the security industry for its valuable data on adversary groups, and the tactics and techniques they use to target organizations. However, there is a gap between recognizing the value of this data and being able to leverage it for impr...
MITRE ATT&CK Framework Spreadsheet-post_thumbnail
MITRE ATT&CK Framework Spreadsheet
by D3 Security - July 31, 2019
Download the Complete MITRE ATT&CK Matrix for Enterprise MITRE ATT&CK comprises the 14 tactics and hundreds of techniques used by adversaries across MITRE’s knowledgebase of real-world cybersecurity incidents, creating a highly effective kill chain framework for today’s security ...
D3 Security Creates First Proactive Response Platform Using MITRE ATT&CK Framework-post_thumbnail
  • News
D3 Security Creates First Proactive Response Platform Using MITRE ATT&CK Framework
by Walker Banerd - July 24, 2019
VANCOUVER, British Columbia–D3 Security, an innovator in security orchestration, automation and response (SOAR) technology, has released Attack Investigator, a unique solution that utilizes the MITRE ATT&CK framework to identify and address the entire kill chain of complex attacks. Attack ...
MITRE ATT&CK + SOAR
by Imarc - July 23, 2019
...
Security Operations Gap Analysis with MITRE ATT&CK-post_thumbnail
  • SOAR
Security Operations Gap Analysis with MITRE ATT&CK
by Walker Banerd - July 5, 2019
The MITRE ATT&CK framework is rapidly growing in popularity among security leaders for many reasons. Among the numerous applications of ATT&CK, many companies are using ATT&CK to identify gaps in their security and what they have covered with their existing tools. For those who are unfam...
How D3 Uses the MITRE Framework to Enhance Phishing Investigations-post_thumbnail
  • Incident Response ,
  • SOAR
How D3 Uses the MITRE Framework to Enhance Phishing Investigations
by Walker Banerd - May 31, 2019
To empower organizations in the fight against advance persistent threats and sophisticated adversaries, SOAR platforms must evolve beyond the linear process of ingesting alerts and automating simple response actions. This is why D3 has fully embedded the MITRE ATT&CK framework into its SOAR plat...
SOAR 2.0: Redefining SOAR with the MITRE ATT&CK Framework-post_thumbnail
SOAR 2.0: Redefining SOAR with the MITRE ATT&CK Framework
by D3 Security - May 29, 2019
Evolving from Event-Based to Intent-Based Response SOAR platforms are broadly effective at the linear process of intaking events and orchestrating response actions. However, they vary widely in their ability to support larger investigations that identify the entire scope of an incident. D3 is the fi...
Level the Playing Field with MITRE ATT&CK—SecurityWeek-post_thumbnail
  • SOAR
Level the Playing Field with MITRE ATT&CK—SecurityWeek
by Walker Banerd - May 4, 2019
A new article by Stan Engelbrecht, Director of D3’s Cyber Security Practice, is currently featured on SecurityWeek. The MITRE ATT&CK framework is rapidly gaining adoption as a valuable way for security teams to categorize, predict, and disrupt adversaries’ actions. That’s why D3 has embedded the...
How D3 Uses the MITRE ATT&CK Framework for Intelligent Correlation (VIDEO)-post_thumbnail
  • SOAR
How D3 Uses the MITRE ATT&CK Framework for Intelligent Correlation (VIDEO)
by Walker Banerd - April 17, 2019
D3 SOAR is making the transition from event-based response to intelligent, intent-based response. This means that D3 users will be able to see every security event in the context of adversarial intent, by correlating events with other traces of the same attack. This allows security teams to take a m...
Moving from Event-Based to Intent-Based SOAR Using the MITRE ATT&CK Framework-post_thumbnail
  • Incident Response ,
  • SOAR
Moving from Event-Based to Intent-Based SOAR Using the MITRE ATT&CK Framework
by Walker Banerd - March 28, 2019
We recently published a whitepaper detailing D3’s vision for the future of SOAR, and how we’re making it a reality. We’re calling it SOAR 2.0, and while that might sound grandiose, we think it reflects how important this step in the evolution of SOAR could be. You can download the whitepaper here to...
Join D3 Security at the Deep Security Conference in Croatia-post_thumbnail
  • Events ,
  • News
Join D3 Security at the Deep Security Conference in Croatia
by Shriram Sharma - September 30, 2022
The Deep Security Conference 2022 takes place over two days in beautiful Croatia at the  Falkensteiner hotel from October 19-20. While there are lots of great reasons to visit this part of the world, we’re super excited to be there to meet cybersecurity leaders from the region and showcase our indus...
Why NextGen SOAR Is the World’s Leading Independent SOAR Platform-post_thumbnail
  • SOAR
Why NextGen SOAR Is the World’s Leading Independent SOAR Platform
by Shriram Sharma - September 20, 2022
SOC leaders have long embraced this fact: security is growing in complexity faster than they can keep up using manual processes. SOAR (Security Orchestration, Automation and Response) emerged as a product category in cybersecurity to address this pain point. SOAR helps security operations teams auto...
NextGen SOAR Is Here-post_thumbnail
NextGen SOAR Is Here
by Shriram Sharma - September 14, 2022
We named our SOAR platform D3 NextGen SOAR because it sets the benchmark for SOAR technology. NextGen SOAR fixes all the pain points that make legacy SOAR products (what we call SOAR 1.0) ineffective and hard to work with. If you’ve thought about SOAR before and decided it wasn’t right for you, cons...
Why NextGen SOAR Is the Best Automation Solution for MSSPs-post_thumbnail
  • SOAR
Why NextGen SOAR Is the Best Automation Solution for MSSPs
by Shriram Sharma - August 26, 2022
The market for managed security services is booming. Many analyst groups are projecting double-digit percentage growth in the sector annually. Yet many  are struggling to keep up with high alert volumes when relying heavily on manual processes to manage a growing customer base with limited resources...
D3 Security & Zscaler Present: Reduce Cyber Risk with SASE & SOAR-post_thumbnail
  • SOAR
D3 Security & Zscaler Present: Reduce Cyber Risk with SASE & SOAR
by Shriram Sharma - August 16, 2022
The term “zero trust” was first coined in 1994, which makes it as old as the internet. However, the zero trust security model as we know it today was first described in 2010 by Forrester analyst John Kindervag. That makes it five years older than SOAR (security orchestration, automation and response...
See NextGen SOAR in Action at Black Hat 2022-post_thumbnail
  • Events ,
  • SOAR
See NextGen SOAR in Action at Black Hat 2022
by Shriram Sharma - August 5, 2022
We’re thrilled to announce that we will be presenting our NextGen SOAR platform at the Microsoft booth (#2340) at Black Hat USA 2022. On Thursday the 11th at 1 PM PST, D3 Security’s Tom Byrne will demonstrate how to enhance security incident response by leveraging NextGen SOAR’s deep integrations wi...
How Does SOAR Fit in an EDR-centric SOC?-post_thumbnail
  • SOAR
How Does SOAR Fit in an EDR-centric SOC?
by Shriram Sharma - July 22, 2022
If you’ve worked in a security operations center (SOC) that has an endpoint detection and response (EDR) platform, you know the value it can add to your incident response capabilities. A SIEM-centric SOC model was more popular in the past, but as EDR tools have improved, more companies are becoming ...
ATT&CKcon 3.0 Highlights: 5 Insightful Sessions Worth a Watch-post_thumbnail
  • MITRE ATT&CK
ATT&CKcon 3.0 Highlights: 5 Insightful Sessions Worth a Watch
by Shriram Sharma - June 22, 2022
The MITRE ATT&CK framework needs no introduction. Over 80 percent of enterprises use ATT&CK, according to a 2020 study. First introduced in 2013, the framework established a standard for the infosec community to describe adversary tactics and techniques. There are now separate matrices for E...
MMT Partners With D3 Security to Bring Next-Generation SOAR to Australia-post_thumbnail
  • News
MMT Partners With D3 Security to Bring Next-Generation SOAR to Australia
by Walker Banerd - June 16, 2022
The following is a reposting of a press release by our partners at Multimedia Technology. Multimedia Technology (MMT) announced today that they have struck a distribution agreement with Canadian cybersecurity vendor D3 Security, making them D3 Security’s value-added distributor in the Australasian r...
RSA 2022 Recap: Key Trends and Frequently Asked Questions-post_thumbnail
  • Events ,
  • RSA Conference
  • SOAR
RSA 2022 Recap: Key Trends and Frequently Asked Questions
by Shriram Sharma - June 14, 2022
RSA Conference is the ‘Super Bowl’ of cybersecurity expos, where the world’s leading security professionals gather to share their knowledge and help shape the future of infosec. After a gap year, this year’s conference was a good comeback, with over 26,000 attendees, and plenty of interesting sessio...
See D3 Chronos, Event Pipeline & MDR Toolkit at RSA Conference 2022-post_thumbnail
  • Events ,
  • RSA Conference
See D3 Chronos, Event Pipeline & MDR Toolkit at RSA Conference 2022
by Shriram Sharma - June 1, 2022
RSA Conference is always a highlight of the year for us here at D3 Security. We’re looking forward to meeting you at SF’s Moscone Center from June 6th–9th, to talk about all things cybersecurity. We’ll be at Booth #N5466 giving demos, answering questions about D3’s SOAR solutions, and giving out the...
Level up your SecOps with NextGen SOAR at Splunk .conf22-post_thumbnail
  • Events ,
  • SOAR
Level up your SecOps with NextGen SOAR at Splunk .conf22
by Shriram Sharma - May 27, 2022
We’re psyched to meet security leaders from across the globe next month at Splunk’s .conf22 at the MGM Grand in Las Vegas on June 13-16. This year’s in-person conference also includes the option to join virtually, so Splunkers from around the world can watch the all the sessions remotely, access the...
How SOAR Can Help You Attract and Retain Cybersecurity Talent-post_thumbnail
  • SOAR
How SOAR Can Help You Attract and Retain Cybersecurity Talent
by Shriram Sharma - May 12, 2022
Security operations center (SOC) teams play a vital and underappreciated role in the function of any organization, but they are especially crucial in many sectors — including finance, technology, and healthcare. Members of SOC teams work around the clock and are responsible for keeping the company s...
What’s the Difference Between SOAR and SAO?-post_thumbnail
  • SOAR
What’s the Difference Between SOAR and SAO?
by Shriram Sharma - May 3, 2022
Security Orchestration, Automation and Response (SOAR) is a relatively new product category – in fact, it just turned five. Research and consulting firm Gartner is credited with coining the term around April 2017, judging by the earliest web artifacts that we found on Google. Great minds think alike...
Digital Shadows + NextGen SOAR-post_thumbnail
Digital Shadows + NextGen SOAR
by Walker Banerd - April 13, 2022
D3’s integration with Digital Shadows SearchLight connects threat intelligence, brand protection, data leak detection, and more to automated triage and response. D3 users can enrich alerts with Digital Shadows intelligence, as well as retrieve valuable data on ingested threat reports, includin...
D3’s Event Pipeline is the Perfect Example of Gartner’s ‘Hyperautomation in Security’-post_thumbnail
  • SOAR
D3’s Event Pipeline is the Perfect Example of Gartner’s ‘Hyperautomation in Security’
by Shriram Sharma - March 14, 2022
We recently published a whitepaper about our Event Pipeline, which is sort of like the nerve center of our SOAR platform. In case you haven’t heard of it, the Event Pipeline is D3 NextGen SOAR’s global event playbook. It leverages 500+ out-of-the-box integrations to enable triage, investigation, and...
ICYMI: Highlights From the Webinar with Forrester’s Allie Mellen on the Future of SOAR-post_thumbnail
  • SOAR
ICYMI: Highlights From the Webinar with Forrester’s Allie Mellen on the Future of SOAR
by Shriram Sharma - March 1, 2022
Our recent webinar with Forrester’s Allie Mellen and D3 Founder Gordon Benoit featured a fascinating debate and discussion on the state and future of SOAR.  In case you prefer to read rather than watch or listen, we’ve transcribed the most important parts of their exchange below. Read on for Allie a...
Credence Security Signs Distribution Agreement to Provide D3’s NextGen SOAR Across the Middle East & India Region-post_thumbnail
  • News
Credence Security Signs Distribution Agreement to Provide D3’s NextGen SOAR Across the Middle East & India Region
by Walker Banerd - November 17, 2021
The following is a reposting of a press release by our partners at Credence Security. Dubai, United Arab Emirates — Wednesday 17th November 2021 – Credence Security, a leading, regional, specialized value-added distributor for cybersecurity, forensics, governance, risk and compliance solutions, toda...
How SOAR Can Help You Solve Cybersecurity Staffing Issues-post_thumbnail
  • SOAR
How SOAR Can Help You Solve Cybersecurity Staffing Issues
by Walker Banerd - November 5, 2021
Even before the pandemic completely reshaped the world of recruiting with an explosion of remote work, it was always hard for most employers to attract and retain qualified cybersecurity professionals. Security pros are in high demand, expensive to hire, and—in the average security operations center...
How to Turn the Lessons of Elite SpecOps into Elite SecOps-post_thumbnail
  • SOAR
How to Turn the Lessons of Elite SpecOps into Elite SecOps
by Walker Banerd - September 28, 2021
We recently published a new whitepaper titled, How the Principles of the Navy SEALs Can Improve Your Use of SOAR, which you can download here. In the whitepaper, we break down four components of the ethos that allows the Navy SEALs to achieve their goals at a level that is virtually unmatched by any...
Why XDR is Not a Replacement for SOAR-post_thumbnail
  • SOAR
Why XDR is Not a Replacement for SOAR
by Walker Banerd - September 3, 2021
Extended Detection and Response—commonly abbreviated to XDR—was first coined in 2018 and has since become an exciting buzzword in the cybersecurity world. Many vendors now offer XDR, which combines several of their products into one integrated offering. XDR grew out of Endpoint Detection and Respons...
D3 Security Expands Global Reach with $10M Investment from Vistara Growth-post_thumbnail
  • News
D3 Security Expands Global Reach with $10M Investment from Vistara Growth
by Walker Banerd - August 31, 2021
Vancouver, BC — August 31, 2021 — D3 Security, the leader in next-generation security orchestration, automation and response (SOAR), today announced it had received a growth equity investment of $10 million USD from Vistara Growth, a provider of flexible growth capital solutions to technology compan...
Breach and Attack Simulation Use Case
by Mack Raicevic - August 17, 2021
Breach and Attack Simulation, Step by Step  Step 1:   The analyst determines what attack scenario they want to simulate. Step 2:   From D3, the analyst activates the assessment in AttackIQ and commands AttackIQ to run all tests. Step 3:   D3 retrieves the results of the assessment. Step 4:  The TTPs...
D3 Security Teams with SYNNEX Corporation to Distribute Advanced SOAR Platform-post_thumbnail
  • News
D3 Security Teams with SYNNEX Corporation to Distribute Advanced SOAR Platform
by Alex MacLachlan - August 3, 2021
D3 Security, the provider of next-generation security orchestration, automation, and response (SOAR) solutions, today announced a distribution agreement with SYNNEX Corporation, a leading provider of distribution, systems design and integration services for the technology industry, to offer the D3 N...
TTP-Based Threat Hunting-post_thumbnail
TTP-Based Threat Hunting
by Walker Banerd - May 25, 2021
Security leaders are increasingly looking to the MITRE ATT&CK matrix to help understand and combat the threats against their environment. Security teams who follow ATT&CK can track the tactics being used by adversaries, the scope of attacks, and the efficacy of their controls—generating crit...
D3’s Upcoming Release is a Launchpad for SOAR Integrations-post_thumbnail
  • SOAR
D3’s Upcoming Release is a Launchpad for SOAR Integrations
by Walker Banerd - March 15, 2021
Integrations are critical to the effectiveness of any SOAR platform, so delays or obstacles to the configuring, testing, and executing of commands between tools can compromise a SOAR implementation before it can get fully up and running. This is an area in which many SOAR platforms struggle. Setting...
KuppingerCole Names D3 an Overall Leader in SOAR Report-post_thumbnail
  • Reports ,
  • SOAR
KuppingerCole Names D3 an Overall Leader in SOAR Report
by Walker Banerd - February 12, 2021
The European analysts KuppingerCole have released their Leadership Compass for Security Orchestration Automation and Response, a comprehensive look at the SOAR marketplace and vendor capabilities. Their extensive analysis of 12 SOAR vendors ranks the leaders in key areas, based on deep evaluation cr...
Test and Optimize Your Security Controls with D3 and AttackIQ-post_thumbnail
  • SOAR
Test and Optimize Your Security Controls with D3 and AttackIQ
by Walker Banerd - February 11, 2021
We are constantly adding new integrations to the list of 300+ tools with which D3 works to automate and orchestrate security operations. One of the most exciting technology partnerships we’ve formed in recent months has been with AttackIQ, a security optimization platform that provides a unique serv...
Year in Review Part 2: The SOAR Industry in 2020-post_thumbnail
  • SOAR
Year in Review Part 2: The SOAR Industry in 2020
by Walker Banerd - January 8, 2021
In this second installment of our 2020 review, we’ll look back at three industry reports that were published in 2020. We’ll see what each one had to say about D3 NextGen SOAR, as well as the SOAR industry overall.   Gartner’s SOAR Market Guide D3 was included as a representative vendor in...
Year in Review Part 1: D3 Highlights From 2020-post_thumbnail
  • SOAR
Year in Review Part 1: D3 Highlights From 2020
by Walker Banerd - January 5, 2021
2020 was challenging for everyone, and of course we felt that at D3 as we adjusted to new conditions throughout the year. Fortunately, however, we were still able to thrive and move our plans forward, despite the challenges, setting us up for a 2021 that we expect to be the best year in our long [&h...
SunBurst Playbooks for the SolarWinds Breach-post_thumbnail
  • SOAR
SunBurst Playbooks for the SolarWinds Breach
by Alex MacLachlan - December 23, 2020
 The SolarWinds supply chain compromise has sprung nearly every security team into action in the past week as they try to determine whether any hosts on their network are running the Orion network monitoring software. Moreover, they are checking—and double-checking—for other signs of malicious acti...
Vertosoft Partners with D3 Security to Bring NextGen SOAR to U.S. Public Sector-post_thumbnail
  • News
Vertosoft Partners with D3 Security to Bring NextGen SOAR to U.S. Public Sector
by Walker Banerd - November 23, 2020
Vertosoft, the company driving emerging technology growth in government, announced today a partnership with D3 Security, a leader in advanced Security Orchestration, Automation, and Response (SOAR) technology. Through the partnership with Vertosoft, D3 Security has been named an approved vendor unde...
What’s New in the Latest Version of D3 NextGen SOAR-post_thumbnail
  • SOAR
What’s New in the Latest Version of D3 NextGen SOAR
by Walker Banerd - October 23, 2020
We are always making improvements to our NextGen SOAR platform, and we recently released a major new update for all of our clients. There are a lot of exciting updates, which can be summarized in a few key themes: Simpler integrations and playbooks. We’ve completely overhauled our playbook editor to...
The Top 10 Reasons Organizations are Choosing D3 SOAR Over its Competitors-post_thumbnail
  • SOAR
The Top 10 Reasons Organizations are Choosing D3 SOAR Over its Competitors
by Walker Banerd - October 6, 2020
The D3 customer base has been growing rapidly, especially in the past couple of years. Major new clients are signing on, existing clients are expanding their services, and our partners around the world are having great success connecting D3 with their clients. It’s been an exciting time. While the S...
8 Things Gartner Gets Right About SOAR (And 1 Thing They Get Wrong)-post_thumbnail
  • Reports ,
  • SOAR
8 Things Gartner Gets Right About SOAR (And 1 Thing They Get Wrong)
by Alex MacLachlan - September 30, 2020
Gartner’s 2020 Market Guide for Security Orchestration, Automation and Response Solutions (Lawson, Bussa & Sadowski, September 21, 2020) was only released a few days ago, but it’s already become one of the most sought-after resources for security professionals evaluating SOAR. You can download y...
RSA NetWitness + NextGen SOAR-post_thumbnail
RSA NetWitness + NextGen SOAR
by Walker Banerd - August 24, 2020
D3 acts as a unified dashboard for analysis and investigation of RSA NetWitness Platform alerts, enriching incoming alerts with correlated MITRE ATT&CK matrix techniques, threat intelligence, and historical incident data. From D3, RSA NetWitness users not only benefit from automation and orchest...
5 Ways D3 SOAR Can Help You Prioritize Incidents-post_thumbnail
  • SOAR
5 Ways D3 SOAR Can Help You Prioritize Incidents
by Walker Banerd - July 28, 2020
In almost any SOC, there are more incidents than can be properly investigated. Even with effective rules in your SIEM and other detection tools that rule out the majority of false positives and low-risk events, incident responders are still often overwhelmed with a never-ending queue. SOAR can bring...
D3 Joins the Microsoft Intelligent Security Association-post_thumbnail
  • News ,
  • SOAR
D3 Joins the Microsoft Intelligent Security Association
by Walker Banerd - July 24, 2020
The fight against sophisticated cybersecurity threats requires collaborative effort between the best minds in the industry. That’s why we’re pleased to announce that D3 Security has joined the Microsoft Intelligent Security Association (MISA), a group of technology providers who have integrated thei...
D3 Appoints Spire Solutions as Distributor of NextGen SOAR in Middle East and Africa-post_thumbnail
  • News ,
  • SOAR
D3 Appoints Spire Solutions as Distributor of NextGen SOAR in Middle East and Africa
by Walker Banerd - June 29, 2020
D3 Security, provider of the leading next-generation SOAR platform, today announced it has appointed Spire Solutions, the Middle East’s preferred security partner, as a value-added distributor in the Middle East and Africa. Under this partnership, Spire Solutions will support the distribution of D3 ...
D3 and Check Point Partner to Help Customers Respond to the Next Generation of Cyber Threats-post_thumbnail
  • News ,
  • SOAR
D3 and Check Point Partner to Help Customers Respond to the Next Generation of Cyber Threats
by Walker Banerd - June 25, 2020
Vancouver, BC—June 25, 2020—D3 Security, the leader in next-generation security orchestration, automation and response (SOAR), today announced a new partnership with Check Point Software Technologies Ltd., a leading provider of cyber security solutions globally, to help security teams automate and o...
SOAR Best Practices Research from Frost & Sullivan-post_thumbnail
SOAR Best Practices Research from Frost & Sullivan
by NicolaS - June 19, 2020
Frost & Sullivan just released its Best Practices Report for the Security Orchestration and Automation Response market – with the authors recognizing D3 for its superior technology and strong overall performance. Download this SOAR Best Practices Research to learn about: The customer and b...
Three Reasons to Get Excited About D3’s Partnership with Datadog-post_thumbnail
  • SOAR
Three Reasons to Get Excited About D3’s Partnership with Datadog
by Walker Banerd - June 12, 2020
We are very happy to announce our new partnership with Datadog, the essential monitoring platform for cloud applications. Datadog brings together data from servers, containers, databases, and third-party services to make customers’ stacks entirely observable. With 85% of enterprises moving their app...
Does D3 Integrate With My Security Tools? (Fortinet, McAfee, Symantec, CrowdStrike, Splunk, and More)-post_thumbnail
  • SOAR
Does D3 Integrate With My Security Tools? (Fortinet, McAfee, Symantec, CrowdStrike, Splunk, and More)
by Walker Banerd - June 5, 2020
Integrations are critical to the value you will get out of a SOAR platform. You’ll want a platform that integrates with the security tools you use of course, but not all integrations are created equal, so you’ll also want to ensure that those integrations are feature-rich and don’t require you to do...
Azure Sentinel + NextGen SOAR-post_thumbnail
Azure Sentinel + NextGen SOAR
by Walker Banerd - May 27, 2020
hrough its integration with Sentinel, D3 can act as the security operations hub for cloud environments or hybrid environments that include on-premise systems. D3 integrates with the Microsoft Azure stack and 260+ other security tools in order to ingest data and orchestrate response actions across an...
Datadog + NextGen SOAR-post_thumbnail
Datadog + NextGen SOAR
by Walker Banerd - May 26, 2020
Datadog’s Application Performance Monitoring (APM) and Security Monitoring solutions can detect IT and security issues from across integrated cloud applications, networks, and infrastructure, but lack a true incident response capability. D3’s integration with Datadog fills this gap by turning ...
LogRhythm + NextGen SOAR-post_thumbnail
LogRhythm + NextGen SOAR
by Walker Banerd - May 21, 2020
D3 acts as a unified dashboard for analysis and investigation of LogRhythm events, enriching them with correlated MITRE ATT&CK matrix techniques, threat intelligence, and historical incident data. From D3, LogRhythm users not only benefit from automation and orchestration-powered response workfl...
Check Point + NextGen SOAR-post_thumbnail
Check Point + NextGen SOAR
by Walker Banerd - May 20, 2020
The combination of Check Point and D3 SOAR provides the SOC with vastly improved visibility, intelligence and agility. Events in Check Point trigger automated playbooks in D3, which gather context from across the security ecosystem, including correlation against the MITRE ATT&CK framework. If th...
Chronicle + NextGen SOAR-post_thumbnail
Chronicle + NextGen SOAR
by Walker Banerd - May 19, 2020
D3’s integration with Chronicle enables a combined analytic and investigative solution that can scale with no added cost. Chronicle is able to ingest data from across a client’s environment, including their detection tools, EPP, syslog, and more. It also aggregates information from third-party threa...
D3 Partners with Chronicle to Combine Security Analytics and Orchestration-post_thumbnail
  • News
D3 Partners with Chronicle to Combine Security Analytics and Orchestration
by Walker Banerd - April 22, 2020
We are pleased to announce that D3 has joined Chronicle’s network of technology partners as an Index Partner. Chronicle will also join the D3 CONNECT partner program. The partnership will be supported by a robust integration between D3’s next-generation SOAR platform and Chronicle’s cloud-based secu...
D3 Security Wins Frost & Sullivan’s 2020 Global Customer Value Leadership Award-post_thumbnail
  • News
D3 Security Wins Frost & Sullivan’s 2020 Global Customer Value Leadership Award
by Walker Banerd - April 21, 2020
Frost & Sullivan, a globally renowned business consulting and research firm, recently recognized D3 Security with their 2020 Global Customer Value Leadership Award for helping customers streamline and automate their security operations. The award is based on Frost & Sullivan’s analysis of th...
Download Gartner’s Tips for Selecting the Right Tools for Your SOC-post_thumbnail
  • Reports
Download Gartner’s Tips for Selecting the Right Tools for Your SOC
by Walker Banerd - April 3, 2020
Earlier this year, Gartner published some great recommendations around purchasing security tools (Tips for Selecting the Right Tools for Your Security Operations Center; Bussa & D’Hoinne, January 23, 2020), written by Toby Bussa and Jeremy D’Hoinne. We’re very happy to be offering the document a...
IBM QRadar + NextGen SOAR-post_thumbnail
IBM QRadar + NextGen SOAR
by Walker Banerd - April 1, 2020
Unify Detection, Analysis, and Response for QRadar Offenses D3 acts as a unified dashboard for analysis and investigation of QRadar offenses, enriching alerts with correlated MITRE ATT&CK matrix techniques, threat intelligence, and historical incident data. From D3, QRadar users not only benefit...
What is Hybrid Cloud Security?-post_thumbnail
  • Industry ,
  • SOAR
What is Hybrid Cloud Security?
by Walker Banerd - March 27, 2020
Hybrid Cloud Security describes the unique process of applying cybersecurity tactics and methods to environments that are split across multiple types of cloud resources. Typically, hybrid cloud environments include are a private cloud, which a company generally operates and hosts on-premise, and a p...
D3 SOAR for Hybrid Environments-post_thumbnail
D3 SOAR for Hybrid Environments
by Walker Banerd - March 11, 2020
More and more companies are moving systems and servers to cloud hosting solutions like Microsoft Azure, but many of them are not committing entirely to the cloud, keeping some systems on-premise. This hybrid model creates an issue around security, because the company is left managing two sets of sec...
See D3’s Next-Generation SOAR at RSA Conference 2020-post_thumbnail
  • Events ,
  • News
See D3’s Next-Generation SOAR at RSA Conference 2020
by Walker Banerd - February 10, 2020
The D3 team is excited to be gearing up for one of the biggest cybersecurity events of the year: RSA Conference 2020. We’ve been attending the conference for many years, and we always come back inspired by the partners, clients, and industry leaders we cross paths with at the event. RSA Conference 2...
Fill the form below to book your meeting at RSA 2020
by Alex MacLachlan - February 6, 2020
Experience in person the only next-generation SOAR platform that combines security orchestration with MITRE ATT&CK and full-lifecycle incident response. Plus, speak with our SOAR and ATT&CK experts and pick up your own “Good in the SOC” swag....
Next-Generation SOAR: Codeless Playbooks and Integrations-post_thumbnail
  • SOAR
Next-Generation SOAR: Codeless Playbooks and Integrations
by Walker Banerd - January 31, 2020
Nearly all security operations centers (SOCs) with SOAR have learned that their playbooks and integrations require more maintenance than expected. That’s because SOAR playbooks must be manually updated, often using Python, whenever a data source or integration point changes. If your SOC has dozens o...
Why Integrations are Easier with D3 SOAR-post_thumbnail
  • SOAR
Why Integrations are Easier with D3 SOAR
by Walker Banerd - January 23, 2020
While SOAR platforms can do a lot of things, their effectiveness will be largely contingent on how well they integrate with their clients’ security infrastructure. That’s why D3 integrates with more than 260 applications in order to orchestrate more than 400 different actions. Integrating with D3 ha...
D3 SOAR 2.0 Release Announcement-post_thumbnail
  • MITRE ATT&CK ,
  • News
  • SOAR
D3 SOAR 2.0 Release Announcement
by Walker Banerd - January 15, 2020
We are proud to announce the release of our most ambitious and innovative project yet: D3 SOAR 2.0. While it may be a bold claim to make, we truly see this new release as pushing the SOAR market forward with both improvements to previous capabilities and entirely new capabilities that no other platf...
3 Things You Can Do With Next Generation SOAR That You Couldn’t Do Before-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
3 Things You Can Do With Next Generation SOAR That You Couldn’t Do Before
by Walker Banerd - January 10, 2020
When you’ve been in the industry as long as D3, you see a lot of evolution in software capabilities. In the early years, it was all about incident response and case management. Playbooks were entirely manual, and integrations were a secondary aspect of the solutions on the market at that time. Next,...
SIEM Alert Enrichment with D3 SOAR-post_thumbnail
SIEM Alert Enrichment with D3 SOAR
by Walker Banerd - December 3, 2019
Turn Alerts into Intelligent, Automation-Powered Response Ingesting alerts from a SIEM for enrichment, analysis, and automation-powered response is at the core of the D3 SOAR platform. D3 integrates seamlessly with all major SIEMs. Events can be ingested into D3 either manually or based on SIEM rule...
D3 SOAR for Threat Hunting-post_thumbnail
D3 SOAR for Threat Hunting
by Walker Banerd - November 14, 2019
Leverage the Power of MITRE ATT&CK and Advanced Orchestration in Your Threat Hunting Signature-based detection and prevention methods make up the bulk of most organizations’ cybersecurity program, but today’s most sophisticated adversaries are skillful at circumventing these methods. This is why...
Where to Start With Incident Response Automation-post_thumbnail
  • SOAR
Where to Start With Incident Response Automation
by Walker Banerd - November 1, 2019
Lots of valuable opportunities for incident response automation are available to security teams, especially when leveraging a SOAR platform. While most security teams are already using some amount of automation, extensive automation in the SOC is still quite rare. In fact, we confirmed this in a rec...
Why Do I Need SOAR if I Have… (SIEM, ITSM, TIP, EDR)-post_thumbnail
  • SOAR
Why Do I Need SOAR if I Have… (SIEM, ITSM, TIP, EDR)
by Walker Banerd - October 17, 2019
As a relatively new category of security tools, there are lots of misconceptions around Security Orchestration, Automation, and Response (SOAR). Some of this confusion is around what types of SOCs will benefit most from SOAR. It is understandable to think that a SOC that already has numerous securit...
Visit D3 at Splunk .conf19-post_thumbnail
  • Events
Visit D3 at Splunk .conf19
by Walker Banerd - October 16, 2019
As we have for the past several years, the D3 team will be attending Splunk’s annual conference next week. This year’s event is called Splunk .conf19, and it will take place at the Venetian Sands Expo in Las Vegas from October 22-24. We’re excited to be attending again this year and we have a lot [&...
Lastline + NextGen SOAR-post_thumbnail
Lastline + NextGen SOAR
by Walker Banerd - October 15, 2019
Automatically Integrate Advanced Malware Analysis into Response Workflows D3’s integration with Lastline brings powerful, AI-based malware analysis, risk scoring, detonation, and threat intelligence into D3’s incident response workflows. Joint users benefit from connecting Lastline’s Deep Content In...
Microsoft + NextGen SOAR-post_thumbnail
Microsoft + NextGen SOAR
by Walker Banerd - October 9, 2019
Detect and Protect Against Cloud Security Threats with Intelligent Orchestration D3’s integrations with Microsoft tools help organizations secure their Azure environments and Exchange mailboxes against all kinds of threats. D3 can act as a central hub for your cloud security operations, intaking ale...
CrowdStrike + NextGen SOAR-post_thumbnail
CrowdStrike + NextGen SOAR
by Walker Banerd - September 30, 2019
Orchestrate Intelligent Endpoint Protection and Automated Analysis Feature-rich integrations with CrowdStrike tools make D3 the perfect command center for event intake, threat intelligence enrichment, malware analysis, and orchestrating actions across endpoints. D3’s automation-powered playbooks, MI...
D3 CONNECTED Global Sales Channel and Partner Program Demonstrates Significant Growth in Q2 2019-post_thumbnail
  • News
D3 CONNECTED Global Sales Channel and Partner Program Demonstrates Significant Growth in Q2 2019
by Walker Banerd - September 17, 2019
VANCOUVER, British Columbia–D3 Security, an innovator in security orchestration, automation and response (SOAR) technology, today announced that their CONNECTED Global Sales Channel and Partner Program has experienced significant growth since its inception in October of last year. Coming off c...
Sherlock in the SOC—SecurityWeek-post_thumbnail
  • Incident Response
Sherlock in the SOC—SecurityWeek
by Walker Banerd - August 19, 2019
A new article by Stan Engelbrecht, Director of D3’s Cyber Security Practice, is currently featured on SecurityWeek. The character Sherlock Holmes once said, “There is a strong family resemblance about misdeeds, and if you have all the details of a thousand at your finger ends, it is odd if you can&#...
Data Breach of the Month: City Power-post_thumbnail
  • Data Breach
Data Breach of the Month: City Power
by Walker Banerd - August 13, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
How SOAR Can Help Support the Transition of IT Staff to Security Operations-post_thumbnail
  • SOAR
How SOAR Can Help Support the Transition of IT Staff to Security Operations
by Walker Banerd - August 8, 2019
Because of the well-documented cybersecurity skills gap, it has become a significant trend for organizations to rely on IT personnel to transition to security operations or to take on additional security responsibilities. This is a difficult transition for both the employees and the organization tha...
Why Incident Response Must Adopt a Kill Chain Perspective—SecurityWeek-post_thumbnail
  • SOAR
Why Incident Response Must Adopt a Kill Chain Perspective—SecurityWeek
by Walker Banerd - July 19, 2019
A new article by Stan Engelbrecht, Director of D3’s Cyber Security Practice, is currently featured on SecurityWeek. Emerging technology is enabling incident response tools—including SOAR platforms like D3—to go beyond individual alerts and address complex attacks holistically. This welcome change re...
Download Gartner’s 2019 Market Guide for SOAR Solutions-post_thumbnail
  • SOAR
Download Gartner’s 2019 Market Guide for SOAR Solutions
by Walker Banerd - July 10, 2019
Note: Download the 2019 Gartner Market Guide for Security Orchestration, Automation and Response Solutions here. Gartner recently published its first ever Market Guide for Security Orchestration, Automation and Response Solutions, written by Claudio Neiva, Craig Lawson, Toby Bussa, and Gorka Sadowsk...
Data Breach of the Month: NASA-post_thumbnail
  • Data Breach
Data Breach of the Month: NASA
by Walker Banerd - July 5, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
Breach of the Month: Fast Retailing-post_thumbnail
  • Data Breach
Breach of the Month: Fast Retailing
by Walker Banerd - June 7, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
D3 Supports Every Tier of SOC Analysts-post_thumbnail
  • Incident Response ,
  • SOAR
D3 Supports Every Tier of SOC Analysts
by Walker Banerd - May 17, 2019
In a security operation center (SOC), analysts are often categorized into four tiers, each with different roles and responsibilities. The definition of each tier varies a bit, depending on who you ask, but a generally accepted description of a Tier 1 analyst would be someone who monitors alerts from...
FireEye + NextGen SOAR-post_thumbnail
FireEye + NextGen SOAR
by D3 Security - May 16, 2019
Rapidly Analyze and Combat Threats Across the Ecosystem D3’s App for FireEye allows you to streamline SecOps and IR workflows, reduce manual coordination, and augment the power of your existing tools. With D3 acting as a hub for endpoint, network, and email security alerts, all potential incidents c...
Data Breach of the Month: FBI National Academy Associates-post_thumbnail
  • Data Breach
Data Breach of the Month: FBI National Academy Associates
by Walker Banerd - May 7, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
SOAR for Fortinet: Why D3 is the Perfect Fit-post_thumbnail
  • SOAR
SOAR for Fortinet: Why D3 is the Perfect Fit
by Walker Banerd - April 23, 2019
Security orchestration, automation, and response (SOAR) platforms are a force multiplier in the SOC because of how they make other security tools more effective. This is especially true when you combine D3 SOAR with the Fortinet Security Fabric. With this unique partnership, you don’t just get certi...
D3 Security Joins Symantec Technology Integration Partner Program-post_thumbnail
  • News ,
  • SOAR
D3 Security Joins Symantec Technology Integration Partner Program
by Alex MacLachlan - April 11, 2019
MOUNTAIN VIEW, Calif.– D3 Security today announced it has joined the Symantec Technology Integration Partner Program (TIPP), a global ecosystem composed of more than 100 participating technology companies, in a collaborative effort to combat cyber-crime and secure the cloud generation. As part...
Data Breach of the Month: Jackson County-post_thumbnail
  • Data Breach ,
  • SOAR
Data Breach of the Month: Jackson County
by Walker Banerd - April 8, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest state-sponsored mega breach, and other times we’ll focus on a lesser known incident that has outsized implications fo...
Data Breach of the Month: Singapore Ministry of Health-post_thumbnail
  • Data Breach
Data Breach of the Month: Singapore Ministry of Health
by Walker Banerd - February 14, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
Data Breach of the Month: EU Diplomatic Cables-post_thumbnail
  • Data Breach
Data Breach of the Month: EU Diplomatic Cables
by Walker Banerd - January 7, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...

Get Started with D3 Security

One platform to stop alert overwhelm. Transform how your security team works, by focusing its resources on real threats.