MITRE ATT&CK Technique-Driven Automation with Smart SOAR-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
MITRE ATT&CK Technique-Driven Automation with Smart SOAR
by Shriram Sharma - November 7, 2023
MITRE ATT&CK is invaluable for SOC teams in understanding adversary behaviors and actions across a range of networks. This robust framework offers granular insight into various attack tactics, techniques, procedures, and threat groups, thereby enabling cybersecurity teams to bolster their defens...
MITRE D3FEND Framework Spreadsheet-post_thumbnail
MITRE D3FEND Framework Spreadsheet
by Shriram Sharma - October 20, 2023
Download the Complete MITRE D3FEND Matrix D3FEND is a complementary framework to MITRE ATT&CK, focusing on defensive countermeasures to mitigate cybersecurity threats. It outlines a structured taxonomy of defensive techniques that security professionals can use to defend against or counteract th...
What Are MITRE ATT&CK and MITRE D3FEND?-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
What Are MITRE ATT&CK and MITRE D3FEND?
by Walker Banerd - September 11, 2023
Ever wish you had a crystal ball for cyber threats? Meet MITRE ATT&CK and MITRE D3FEND, your digital fortune-tellers. In a fast-moving threat landscape, staying ahead of your adversaries is crucial. MITRE ATT&CK unveils adversary tactics, giving you the upper hand in fortifying your organiza...
Implementing MITRE D3FEND for ATT&CK Technique T1110: Brute Force-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
Implementing MITRE D3FEND for ATT&CK Technique T1110: Brute Force
by Pierre Noujeim - August 25, 2023
When account credentials are unknown, attackers may use a brute force attack in order to gain access. This can occur as an early stage of their attack, to gain initial access, or to enhance their privileges after access has already been obtained. MITRE’s D3FEND matrix outlines how to address this te...
Implementing MITRE D3FEND for ATT&CK Technique T1059: Command and Scripting Interpreter-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
Implementing MITRE D3FEND for ATT&CK Technique T1059: Command and Scripting Interpreter
by Pierre Noujeim - July 27, 2023
Command and Scripting Interpreter attacks were the second most common technique seen in MITRE’s Engenuity’s Sightings Ecosystem report, representing 15.77% of 1.1 million sightings. MITRE’s D3FEND matrix outlines how to address this technique however security teams struggle to consistently implement...
Implementing MITRE D3FEND for ATT&CK Technique T1053: Scheduled Task/Job-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
Implementing MITRE D3FEND for ATT&CK Technique T1053: Scheduled Task/Job
by Pierre Noujeim - July 17, 2023
Scheduled task/job threats, which make up MITRE ATT&CK Technique T1053, can have severe implications for an organization’s security. MITRE also outlines how to address this technique in their D3FEND Matrix. However, until now, security teams haven’t had a consistent way of implementing D3F...
Win More Business With Your Own Managed XDR and MITRE Offering-post_thumbnail
Win More Business With Your Own Managed XDR and MITRE Offering
by Shriram Sharma - June 29, 2023

Join Stephan Tallent, CISSP, CRO at High Wire Networks, and D3’s Pierre Noujeim in this workshop on transforming Managed Security Services with Smart SOAR’s MXDR, and MITRE offerings.

...
How to Automate Incident Response to MITRE ATT&CK Technique T1003: OS Credential Dumping-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
How to Automate Incident Response to MITRE ATT&CK Technique T1003: OS Credential Dumping
by Pierre Noujeim - June 28, 2023
In this blog post, we will outline four incident response playbooks for MITRE ATT&CK Technique T1003: OS Credential Dumping. Credential Dumping is a technique that allows adversaries to steal user authentication materials, such as usernames and passwords, often from system memory. The indicators...
How to Automate Incident Response to MITRE ATT&CK Technique T1566: Phishing-post_thumbnail
  • Integration Guide ,
  • SOAR
How to Automate Incident Response to MITRE ATT&CK Technique T1566: Phishing
by Pierre Noujeim - June 23, 2023
In this post, we will outline three incident response playbooks for MITRE ATT&CK Technique T1566: Phishing. This technique poses a serious risk due to its ability to take advantage of human error. Phishing remains a time-drain on security teams. Smart SOAR can help operationalize your phishing i...
MITRE ATT&CK Framework Spreadsheet Thank You
by Shriram Sharma - August 17, 2022
...
MITRE ATT&CK
by Shriram Sharma - May 20, 2022
...
Why MITRE Calls SOAR “Indispensable” in its Latest Book-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
Why MITRE Calls SOAR “Indispensable” in its Latest Book
by Shriram Sharma - May 19, 2022
MITRE Corp’s recently published book, 11 Strategies of a World-Class Cybersecurity Operations Center, is a must-read for security operations center (SOC) teams and just about anyone interested in infosec. The book is written for professionals who work in a SOC, but applies to any security operations...
See the Evolution of the MITRE ATT&CK Framework from 2015 to Now-post_thumbnail
  • MITRE ATT&CK
See the Evolution of the MITRE ATT&CK Framework from 2015 to Now
by Shriram Sharma - April 22, 2022
If you are a cybersecurity practitioner, you probably know what ATT&CK is all about. But just for those who aren’t aware, here’s a quick refresher on this revolutionary threat intelligence framework. So what is the MITRE ATT&CK framework? ATT&CK, which stands for Adversarial Tactics, Tec...
MITRE ATT&CK For Dummies-post_thumbnail
MITRE ATT&CK For Dummies
by Walker Banerd - June 18, 2020
The MITRE ATT&CK Matrix for Enterprise is the world’s largest database of cyber adversary tactics, techniques, and procedures. In fact, it’s so comprehensive that it can be hard to know how to start using it in your security operations. In this book, you’ll discover exactly wha...
10 Reasons to Use MITRE ATT&CK (and how to get started)-post_thumbnail
  • MITRE ATT&CK
10 Reasons to Use MITRE ATT&CK (and how to get started)
by Walker Banerd - June 16, 2020
We recently released our exclusive Ebook MITRE ATT&CK For Dummies. It’s a definitive resource about why ATT&CK is so valuable and how to use it in your security operations. The topic is of great interest to us at D3 because of how deeply embedded ATT&CK is in our SOAR platform. In this b...
MITRE ATT&CK For Dummies-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
MITRE ATT&CK For Dummies
by Walker Banerd - May 7, 2020
Everyone knows the “For Dummies” series of books. In fact, I’d wager you’ve read several over the years when you needed to learn about a new topic in an accessible but informative way. I know I have. That’s why I’m excited to announce that D3 has teamed up with the folks behind the “Dummies” books [...
Demo the Next-Generation SOAR with MITRE ATT&CK-post_thumbnail
Demo the Next-Generation SOAR with MITRE ATT&CK
by Alex MacLachlan - February 6, 2020
...
Four Ways to Leverage MITRE ATT&CK in Your Security Operations-post_thumbnail
Four Ways to Leverage MITRE ATT&CK in Your Security Operations
by Walker Banerd - January 27, 2020
The MITRE ATT&CK Framework is a comprehensive matrix of adversary behaviors, based on MITRE’s research into thousands of real-world cybersecurity incidents. The potential value of ATT&CK as a resource is widely acknowledged, but many security teams still struggle to operationalize it effecti...
Common Obstacles to Leveraging MITRE ATT&CK and How D3 Can Help-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
Common Obstacles to Leveraging MITRE ATT&CK and How D3 Can Help
by Walker Banerd - December 21, 2019
It is widely agreed upon in the security world that the MITRE ATT&CK Framework is a valuable tool for security teams to wield in their never-ending fight against sophisticated adversaries. Among other benefits, ATT&CK brings “behavior-based” (as opposed to “signature-based”) detection into t...
Monitor Module Overview: Bringing MITRE ATT&CK into SOAR-post_thumbnail
Monitor Module Overview: Bringing MITRE ATT&CK into SOAR
by Walker Banerd - December 18, 2019
Monitor Events, Indicators, and Artifacts in Real Time D3 SOAR’s interface has recently been overhauled to reflect how D3 enables proactive threat hunting, attack analysis, and event triage through MITRE ATT&CK. The Monitor module shows this evolution most clearly, with a home screen that maps e...
How MITRE ATT&CK Enhances Gartner’s Value Categories of SOAR Solutions-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
How MITRE ATT&CK Enhances Gartner’s Value Categories of SOAR Solutions
by Walker Banerd - December 13, 2019
Toward the end of 2018, Gartner published its Emerging Technology Analysis of SOAR solutions (Ahm, December 7, 2018). In this piece, the author laid out three “value categories” for SOAR that represent the different varieties of value of which all SOAR solutions offer some combination. In the year s...
How to Leverage MITRE ATT&CK in Your Security Operations with D3 SOAR-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
How to Leverage MITRE ATT&CK in Your Security Operations with D3 SOAR
by Walker Banerd - September 27, 2019
The MITRE ATT&CK matrix has gained widespread recognition in the security industry for its valuable data on adversary groups, and the tactics and techniques they use to target organizations. However, there is a gap between recognizing the value of this data and being able to leverage it for impr...
MITRE ATT&CK Framework Spreadsheet-post_thumbnail
MITRE ATT&CK Framework Spreadsheet
by Alex MacLachlan - July 31, 2019
Download the Complete MITRE ATT&CK Matrix for Enterprise MITRE ATT&CK comprises the 14 tactics and hundreds of techniques used by adversaries across MITRE’s knowledgebase of real-world cybersecurity incidents, creating a highly effective kill chain framework for today’s security ...
D3 Security Creates First Proactive Response Platform Using MITRE ATT&CK Framework-post_thumbnail
  • News
D3 Security Creates First Proactive Response Platform Using MITRE ATT&CK Framework
by Walker Banerd - July 24, 2019
VANCOUVER, British Columbia–D3 Security, an innovator in security orchestration, automation and response (SOAR) technology, has released Attack Investigator, a unique solution that utilizes the MITRE ATT&CK framework to identify and address the entire kill chain of complex attacks. Attack ...
MITRE ATT&CK + SOAR
by Alex MacLachlan - July 23, 2019
...
Security Operations Gap Analysis with MITRE ATT&CK-post_thumbnail
  • SOAR
Security Operations Gap Analysis with MITRE ATT&CK
by Walker Banerd - July 5, 2019
The MITRE ATT&CK framework is rapidly growing in popularity among security leaders for many reasons. Among the numerous applications of ATT&CK, many companies are using ATT&CK to identify gaps in their security and what they have covered with their existing tools. For those who are unfam...
How D3 Uses the MITRE Framework to Enhance Phishing Investigations-post_thumbnail
  • Incident Response ,
  • SOAR
How D3 Uses the MITRE Framework to Enhance Phishing Investigations
by Walker Banerd - May 31, 2019
To empower organizations in the fight against advance persistent threats and sophisticated adversaries, SOAR platforms must evolve beyond the linear process of ingesting alerts and automating simple response actions. This is why D3 has fully embedded the MITRE ATT&CK framework into its SOAR plat...
SOAR 2.0: Redefining SOAR with the MITRE ATT&CK Framework-post_thumbnail
SOAR 2.0: Redefining SOAR with the MITRE ATT&CK Framework
by Alex MacLachlan - May 29, 2019
Evolving from Event-Based to Intent-Based Response SOAR platforms are broadly effective at the linear process of intaking events and orchestrating response actions. However, they vary widely in their ability to support larger investigations that identify the entire scope of an incident. D3 is the fi...
Level the Playing Field with MITRE ATT&CK—SecurityWeek-post_thumbnail
  • SOAR
Level the Playing Field with MITRE ATT&CK—SecurityWeek
by Walker Banerd - May 4, 2019
A new article by Stan Engelbrecht, Director of D3’s Cyber Security Practice, is currently featured on SecurityWeek. The MITRE ATT&CK framework is rapidly gaining adoption as a valuable way for security teams to categorize, predict, and disrupt adversaries’ actions. That’s why D3 has embedded the...
How D3 Uses the MITRE ATT&CK Framework for Intelligent Correlation (VIDEO)-post_thumbnail
  • SOAR
How D3 Uses the MITRE ATT&CK Framework for Intelligent Correlation (VIDEO)
by Walker Banerd - April 17, 2019
D3 SOAR is making the transition from event-based response to intelligent, intent-based response. This means that D3 users will be able to see every security event in the context of adversarial intent, by correlating events with other traces of the same attack. This allows security teams to take a m...
Moving from Event-Based to Intent-Based SOAR Using the MITRE ATT&CK Framework-post_thumbnail
  • Incident Response ,
  • SOAR
Moving from Event-Based to Intent-Based SOAR Using the MITRE ATT&CK Framework
by Walker Banerd - March 28, 2019
We recently published a whitepaper detailing D3’s vision for the future of SOAR, and how we’re making it a reality. We’re calling it SOAR 2.0, and while that might sound grandiose, we think it reflects how important this step in the evolution of SOAR could be. You can download the whitepaper here to...
D3 Security is a proud participant in the Microsoft Security Copilot Partner Private Preview-post_thumbnail
  • News ,
  • SOAR
D3 Security is a proud participant in the Microsoft Security Copilot Partner Private Preview
by Walker Banerd - January 8, 2024
VANCOUVER, BC, CANADA — 1/8/2024 — D3 Security today announced its participation in the Microsoft Security Copilot Partner Private Preview. D3 Security was selected based on their proven experience with Microsoft Security technologies, willingness to explore and provide feedback on cutting edge func...
Chronicle + Smart SOAR [2023 Edition]-post_thumbnail
Chronicle + Smart SOAR [2023 Edition]
by Walker Banerd - December 11, 2023
Break down security tool silos with Smart SOAR’s integration with Google Chronicle. This powerful combination enhances cross-platform orchestration, automates alert enrichment, and accelerates remediation processes. D3’s utilization of Chronicle’s comprehensive data, including third-party thre...
Take Action on Threat Intelligence with Smart SOAR-post_thumbnail
Take Action on Threat Intelligence with Smart SOAR
by Shriram Sharma - December 5, 2023
Many organizations subscribe to threat intelligence services but lack a concrete strategy to effectively interpret the intelligence and transform it into actionable response measures. This whitepaper highlights essential use-cases for cyber threat intelligence experts and SOC teams utilizing Smart S...
Unpacking the Financial and Security Implications of Vendor Lock-In-post_thumbnail
  • SOAR
Unpacking the Financial and Security Implications of Vendor Lock-In
by Pierre Noujeim - November 28, 2023
The concept of ‘platformization’ – where leading vendors like Cisco or Palo Alto offer extensive, integrated security platforms – is becoming increasingly common. However, this trend towards platformization also brings to the fore the issue of vendor lock-in. This situation arises when organizations...
What Enterprise Security Teams Expect from Case Management Solutions-post_thumbnail
  • SOAR
What Enterprise Security Teams Expect from Case Management Solutions
by Pierre Noujeim - September 29, 2023
A less-talked about challenge in cybersecurity is managing multiple alert queues. While the volume of alerts is acknowledged as an issue, an important step toward simplifying day-to-day life for security analysts is to consolidate alerts into a single queue. This is why security orchestration, autom...
What’s New in Smart SOAR (September 2023 Release)-post_thumbnail
  • News ,
  • SOAR
What’s New in Smart SOAR (September 2023 Release)
by Casper Leung - September 8, 2023
We’re delighted to introduce some sought-after enhancements this month to the Smart SOAR platform. We’ve refined our reporting dashboard, upgraded the widget query builder, and enhanced the Incident Workspace. Additionally, the Monitor Module and Playbook Task Details have been adjusted to cat...
XDR vs. SIEM vs. SOAR: A Vendor-Agnostic Perspective-post_thumbnail
  • SIEM ,
  • SOAR
XDR vs. SIEM vs. SOAR: A Vendor-Agnostic Perspective
by Shriram Sharma - August 29, 2023
For modern SOC teams, detection and response is a big data problem. Effective cyber defense hinges on collecting, analyzing, and acting on massive troves of security-relevant data. This is where tools like XDR, SIEM, and SOAR find themselves pitted against each other. Each tool, while distinct in it...
8x Faster Response, 99% Alert Noise Reduction: Smart SOAR’s Impact on High Wire Networks’ Cybersecurity Operations-post_thumbnail
  • MSSPs ,
  • SOAR
8x Faster Response, 99% Alert Noise Reduction: Smart SOAR’s Impact on High Wire Networks’ Cybersecurity Operations
by Shriram Sharma - July 20, 2023
In case you missed it, you can still watch our recent workshop featuring Stephan Tallent, CRO at US-based master MSSP High Wire Networks, and Pierre Noujeim from D3 Security. The thought-provoking workshop, titled ‘Win More Business with Your Own MXDR and MITRE Offering‘, is a must-watch...
Top 5 Takeaways From Gartner’s 2023 Market Guide for SOAR-post_thumbnail
  • Reports ,
  • SOAR
Top 5 Takeaways From Gartner’s 2023 Market Guide for SOAR
by Shriram Sharma - July 5, 2023
As an independent, vendor-agnostic SOAR provider, we‘re thrilled to announce that D3 Security has been recognized for the third consecutive time as a Representative Vendor in the latest Gartner Market Guide for Security Orchestration, Automation and Response Solutions. We’re also thrilled to offer i...
Smart SOAR Gives You the Best Cybersecurity Playbooks-post_thumbnail
  • SOAR
Smart SOAR Gives You the Best Cybersecurity Playbooks
by Shriram Sharma - June 22, 2023
Security operation center (SOC) teams need security orchestration, automation, and response (SOAR) because it provides a simple, efficient, and effective method for response to the growing complexity and volume of cybersecurity threats. SOAR playbooks are where the rubber meets the road; where incid...
Identity-Driven Security Operations with Smart SOAR-post_thumbnail
  • SOAR
Identity-Driven Security Operations with Smart SOAR
by Shriram Sharma - June 7, 2023
Security Operations Center (SOC) teams are increasingly adopting Security Orchestration, Automation, and Response (SOAR) to keep pace with the growing volume and sophistication of threats and to enhance the effectiveness and efficiency of their security operations. Forking away from a deluge of “Dum...
What’s New in Smart SOAR (June 2023 Release)-post_thumbnail
  • News ,
  • SOAR
What’s New in Smart SOAR (June 2023 Release)
by Casper Leung - June 5, 2023
Here’s a quick walkthrough of the latest features and enhancements in the June 2023 release of Smart SOAR. With a complete overhaul of the Reporting & Analytics dashboard, an innovative MSSP Client Portal, significant incident workspace improvements, and much more, this update promises to ...
Sick and Tired of “Dumb SOAR”? Smart SOAR Is the Answer-post_thumbnail
  • SOAR
Sick and Tired of “Dumb SOAR”? Smart SOAR Is the Answer
by Shriram Sharma - May 24, 2023
Frustrated with your current Security Orchestration, Automation, and Response (SOAR) platform? You’re not alone. 70% of our new customers in 2022 signed up with us after experiencing challenges with their previous SOAR solutions. These organizations, just like you, were searching for a more co...
Defending Against Valid Account Threats: A Holistic Workflow with CrowdStrike, Okta, Elastic, and Recorded Future-post_thumbnail
  • Incident Response ,
  • SOAR
Defending Against Valid Account Threats: A Holistic Workflow with CrowdStrike, Okta, Elastic, and Recorded Future
by Pierre Noujeim - May 18, 2023
As organizations seek to bolster their cyber defense strategies, the MITRE ATT&CK framework has emerged as a valuable resource for understanding and categorizing real-world threats. This globally-accessible knowledge base offers a comprehensive and structured approach to enumerating the tactics,...
How Smart SOAR Automates Threat Hunting-post_thumbnail
  • SOAR
How Smart SOAR Automates Threat Hunting
by Shriram Sharma - May 16, 2023
Threat hunting is a critical practice for catching sophisticated threats that may bypass the most advanced detection tools in a SOC. It helps organizations stay ahead of potential threats before they transform into significant issues. In threat hunting, analysts aim to identify signs of a potential ...
Recent Reviews of D3 Security on Gartner Peer Insights-post_thumbnail
Recent Reviews of D3 Security on Gartner Peer Insights
by Shriram Sharma - May 4, 2023
D3 Security’s powerful Smart SOAR platform is the top choice for security orchestration, automation, and response (SOAR). Learn why our customers love our product by exploring their reviews from Gartner Peer Insights. Download this collection of reviews to learn: Why we are consistently rated ...
How to Reduce the Financial Impact of Security Incidents by 90% or More with Smart SOAR-post_thumbnail
  • Integration Guide ,
  • SOAR
How to Reduce the Financial Impact of Security Incidents by 90% or More with Smart SOAR
by Pierre Noujeim - May 1, 2023
“By 2024, organizations that adopt a cybersecurity mesh architecture to integrate security tools, so that they work together as an ecosystem, will reduce the financial impact of individual security incidents by 90%, on average.” – Gartner In 2017, Equifax, one of the largest credit reporting a...
D3 Security Launches Smart SOAR™, Delivering Higher ROI, Faster Response & More Confidence-post_thumbnail
  • News ,
  • SOAR
D3 Security Launches Smart SOAR™, Delivering Higher ROI, Faster Response & More Confidence
by Walker Banerd - April 17, 2023
Vancouver, BC—April 17, 2023—D3 Security, the security orchestration, automation, and response (SOAR) vendor that does what others can’t, today announced the launch of its Smart SOAR™ platform, which expands beyond traditional SOAR with hyperscalable, risk-based autonomous triage and incident remedi...
We Implemented Smart SOAR at a Giant MDR Provider. Here’s What We Learned-post_thumbnail
  • Case Studies ,
  • SOAR
We Implemented Smart SOAR at a Giant MDR Provider. Here’s What We Learned
by Shriram Sharma - April 6, 2023
One of D3’s biggest recent implementations was our SOAR deployment at a global MDR vendor with thousands of customers worldwide. We even wrote a case study about it, highlighting how this MDR provider needed to upgrade its SOAR platform to keep pace with its growth and advanced technical requirement...
A Comprehensive Guide to Smart SOAR-post_thumbnail
A Comprehensive Guide to Smart SOAR
by Shriram Sharma - April 5, 2023
Many security teams are frustrated with their current SOAR tools and want a smarter solution. They’re switching to Smart SOAR, the world’s most advanced operating system for autonomous triage and cross-platform response. In this guide, we show you how Smart SOAR outperforms conventional SOAR tools i...
Why Smart SOAR is the Best SOAR for Microsoft Defender for Endpoint-post_thumbnail
  • Integration Guide ,
  • SOAR
Why Smart SOAR is the Best SOAR for Microsoft Defender for Endpoint
by Pierre Noujeim - April 5, 2023
In the fast-paced world of cybersecurity, security teams must continuously adapt to protect their organization’s digital assets. Streamlining and automating incident response processes is essential for effective defense against threats. One way to achieve this is by integrating powerful cybers...
How MSSPs can Serve their First 50 Clients with One SOAR Playbook-post_thumbnail
  • MSSPs ,
  • SOAR
How MSSPs can Serve their First 50 Clients with One SOAR Playbook
by Pierre Noujeim - March 21, 2023
What MSSP Customers Say About D3 “D3 is giving a much better possibility for our business to grow, so even though we are rapidly growing, we’ll be able to scale up to a lot more customers without adding more staff.” —Philip Lyngø, Security & Analytics Manager, Trifork Security “It was really on ...
Respond to Trojan Alerts in Seconds with SentinelOne, VirusTotal, and Microsoft Entra ID-post_thumbnail
  • Integration Guide ,
  • SOAR
Respond to Trojan Alerts in Seconds with SentinelOne, VirusTotal, and Microsoft Entra ID
by Pierre Noujeim - March 17, 2023
In this post, we’ll be using SentinelOne, VirusTotal, and Microsoft Entra ID to investigate and respond to a potential trojan virus. SentinelOne provides deep enrichment on the endpoint, VirusTotal will tell us if the file has been marked as malicious by the wider community, and Microsoft Entra ID w...
Why D3 Smart SOAR is a Security Trailblazer-post_thumbnail
  • SOAR
Why D3 Smart SOAR is a Security Trailblazer
by Shriram Sharma - March 16, 2023
In case you haven’t heard the news, D3 Security has been selected as a finalist in the Security Trailblazer category for the 2023 Microsoft Security Excellence Awards presented by the Microsoft Intelligent Security Association (MISA). The Security Trailblazer award recognizes companies that are lead...
D3 Security to Demonstrate its Vision of Smarter SOAR for MSSPs at IT Nation London-post_thumbnail
  • Events ,
  • News
D3 Security to Demonstrate its Vision of Smarter SOAR for MSSPs at IT Nation London
by Walker Banerd - March 16, 2023
Vancouver, BC—March 16, 2023—D3 Security, the leader in smart security orchestration, automation, and response (SOAR), today announced they are a gold sponsor of ConnectWise IT Nation London 2023, held at the Royal Lancaster in London from March 20th-22nd. Executives from D3 Security will be showcas...
Playbook Breakdown: Cross-Stack Analysis with CrowdStrike, Zscaler, and Active Directory-post_thumbnail
  • SOAR
Playbook Breakdown: Cross-Stack Analysis with CrowdStrike, Zscaler, and Active Directory
by Pierre Noujeim - March 10, 2023
In this post, we explore how CrowdStrike, Zscaler, and Active Directory can be used in one playbook to investigate and respond to a remote file download and launch alert. By combining the three tools (EDR, zero trust, identity management) into a single playbook, users can make the most of intelligen...
AI-Assisted Kill Chain Investigation with ChatGPT and Smart SOAR-post_thumbnail
  • Integration Guide ,
  • SOAR
AI-Assisted Kill Chain Investigation with ChatGPT and Smart SOAR
by Pierre Noujeim - March 6, 2023
As cyber threats continue to grow in sophistication and frequency, security teams are under immense pressure to detect and respond to incidents quickly and effectively. With the volume of alerts generated every day, analysts can easily become overwhelmed and fatigued. This is where automation and ar...
Experience a Smarter SOAR at IT Nation London 2023-post_thumbnail
  • Events ,
  • News
Experience a Smarter SOAR at IT Nation London 2023
by Shriram Sharma - March 1, 2023
D3 Security is proud to be a gold sponsor of ConnectWise IT Nation London 2023! As the market leader in SOAR for MSSPs and MSPs, we can’t wait to show you the latest MSSP-focused capabilities we’ve added to our SOAR platform. Visit us at Booth #9 at the Royal Lancaster in London anytime from 2...
Transform Incident Response with Smart SOAR and Microsoft Sentinel-post_thumbnail
  • SIEM ,
  • SOAR
Transform Incident Response with Smart SOAR and Microsoft Sentinel
by Alex MacLachlan - February 8, 2023
D3’s Smart SOAR has a deep integration with Microsoft Sentinel. This integration gives security teams the ability to triage, investigate and respond to Sentinel alerts and Sentinel incidents, in the consolidated, automation-powered D3 work space. Events from Microsoft Sentinel and any other products...
Security Automation Explained: A Guide for Beginners-post_thumbnail
  • SOAR
Security Automation Explained: A Guide for Beginners
by Shriram Sharma - February 3, 2023
Cyber attacks are becoming more frequent and advanced these days, carried out by criminal groups offering “ransomware-as-a-service” and nation-state-backed threat groups. To highlight this trend, let’s examine the phishing attack vector, which is the most popular attack technique f...
D3’s Roadmap Highlights for 2023: Machine Learning and More-post_thumbnail
  • SOAR
D3’s Roadmap Highlights for 2023: Machine Learning and More
by Walker Banerd - December 23, 2022
2022 was a momentous year for D3 Security, but we’re always looking to the future. We are committed to being leaders, not followers, in the SOAR industry, and with than in mind we have laid out a plan for 2023 that might be our most ambitious roadmap yet. The next year of D3 Smart SOAR […]...
Buy Smart SOAR Through Microsoft Azure Consumption Commitment (MACC)-post_thumbnail
  • SOAR
Buy Smart SOAR Through Microsoft Azure Consumption Commitment (MACC)
by Shriram Sharma - November 22, 2022
As many of you may know, Smart SOAR is available through the Microsoft Azure Marketplace. As 2022 comes to an end, here’s a timely reminder that you can use any remaining balance from your Microsoft Azure Consumption Commitment program to purchase Smart SOAR on the Azure Marketplace. What is the MAC...
Looking for the SOAR Magic Quadrant? Start Here-post_thumbnail
  • Reports ,
  • SOAR
Looking for the SOAR Magic Quadrant? Start Here
by Shriram Sharma - November 18, 2022
If you came here looking for the Gartner Magic Quadrant for SOAR (Security Orchestration, Automation and Response), let’s get the spoilers out of the way first. No, there isn’t one yet. It doesn’t exist at the time of writing this post. If Gartner releases one, we’ll make sure to update this post an...
Find Threats Faster Together with Elastic & D3 Smart SOAR-post_thumbnail
  • SOAR
Find Threats Faster Together with Elastic & D3 Smart SOAR
by Shriram Sharma - November 8, 2022
We’ve received a great response for our upcoming webinar with Elastic on November 16th and seats are filling up fast. Many of our customers use D3 Smart SOAR’s integration with Elastic, which is no surprise considering it is the most popular enterprise search engine.  The webinar is a great opportun...
5 Key Benefits of SOAR (Security Orchestration Automation and Response)-post_thumbnail
  • Data Breach ,
  • SOAR
5 Key Benefits of SOAR (Security Orchestration Automation and Response)
by Shriram Sharma - October 21, 2022
A recent survey revealed that up to 90 percent of companies were hit by ransomware in 2022. In the wake of such unrelenting attacks, often perpetrated by state-sponsored threat actors, spending on new cybersecurity technologies is usually on the top of mind for every CISO and security manager. But n...
How a Global MDR Leader Achieved Hyperscalability-post_thumbnail
How a Global MDR Leader Achieved Hyperscalability
by Shriram Sharma - October 14, 2022
This US-based Managed Detection and Response (MDR) provider had ambitious goals and complex technical requirements that were not being met by their existing SOAR tool. Performance and data ingestion issues at scale, lack of multitenancy, and failing support contributed to their frustration. The MDR ...
Join D3 Security at the Deep Security Conference in Croatia-post_thumbnail
  • Events ,
  • News
Join D3 Security at the Deep Security Conference in Croatia
by Shriram Sharma - September 30, 2022
The Deep Security Conference 2022 takes place over two days in beautiful Croatia at the  Falkensteiner hotel from October 19-20. While there are lots of great reasons to visit this part of the world, we’re super excited to be there to meet cybersecurity leaders from the region and showcase our indus...
Why Smart SOAR Is the World’s Leading Independent SOAR Platform-post_thumbnail
  • SOAR
Why Smart SOAR Is the World’s Leading Independent SOAR Platform
by Shriram Sharma - September 20, 2022
SOC leaders have long embraced this fact: security is growing in complexity faster than they can keep up using manual processes. SOAR (Security Orchestration, Automation and Response) emerged as a product category in cybersecurity to address this pain point. SOAR helps security operations teams auto...
NextGen SOAR Is Here-post_thumbnail
NextGen SOAR Is Here
by Shriram Sharma - September 14, 2022
We named our SOAR platform D3 NextGen SOAR because it sets the benchmark for SOAR technology. NextGen SOAR fixes all the pain points that make legacy SOAR products (what we call SOAR 1.0) ineffective and hard to work with. If you’ve thought about SOAR before and decided it wasn’t right for you, cons...
Why Smart SOAR Is the Best Automation Solution for MSSPs-post_thumbnail
  • SOAR
Why Smart SOAR Is the Best Automation Solution for MSSPs
by Shriram Sharma - August 26, 2022
The market for managed security services is booming. Many analyst groups are projecting double-digit percentage growth in the sector annually. Yet many  are struggling to keep up with high alert volumes when relying heavily on manual processes to manage a growing customer base with limited resources...
D3 Security & Zscaler Present: Reduce Cyber Risk with SASE & SOAR-post_thumbnail
  • SOAR
D3 Security & Zscaler Present: Reduce Cyber Risk with SASE & SOAR
by Shriram Sharma - August 16, 2022
The term “zero trust” was first coined in 1994, which makes it as old as the internet. However, the zero trust security model as we know it today was first described in 2010 by Forrester analyst John Kindervag. That makes it five years older than SOAR (security orchestration, automation and response...
See Smart SOAR in Action at Black Hat 2022-post_thumbnail
  • Events ,
  • SOAR
See Smart SOAR in Action at Black Hat 2022
by Shriram Sharma - August 5, 2022
We’re thrilled to announce that we will be presenting our Smart SOAR platform at the Microsoft booth (#2340) at Black Hat USA 2022. On Thursday the 11th at 1 PM PST, D3 Security’s Tom Byrne will demonstrate how to enhance security incident response by leveraging Smart SOAR’s deep integrations with M...
How Does SOAR Fit in an EDR-centric SOC?-post_thumbnail
  • SOAR
How Does SOAR Fit in an EDR-centric SOC?
by Shriram Sharma - July 22, 2022
If you’ve worked in a security operations center (SOC) that has an endpoint detection and response (EDR) platform, you know the value it can add to your incident response capabilities. A SIEM-centric SOC model was more popular in the past, but as EDR tools have improved, more companies are becoming ...
ATT&CKcon 3.0 Highlights: 5 Insightful Sessions Worth a Watch-post_thumbnail
  • MITRE ATT&CK
ATT&CKcon 3.0 Highlights: 5 Insightful Sessions Worth a Watch
by Shriram Sharma - June 22, 2022
The MITRE ATT&CK framework needs no introduction. Over 80 percent of enterprises use ATT&CK, according to a 2020 study. First introduced in 2013, the framework established a standard for the infosec community to describe adversary tactics and techniques. There are now separate matrices for E...
MMT Partners With D3 Security to Bring Next-Generation SOAR to Australia-post_thumbnail
  • News
MMT Partners With D3 Security to Bring Next-Generation SOAR to Australia
by Walker Banerd - June 16, 2022
The following is a reposting of a press release by our partners at Multimedia Technology. Multimedia Technology (MMT) announced today that they have struck a distribution agreement with Canadian cybersecurity vendor D3 Security, making them D3 Security’s value-added distributor in the Australasian r...
RSA 2022 Recap: Key Trends and Frequently Asked Questions-post_thumbnail
  • Events ,
  • RSA Conference
  • SOAR
RSA 2022 Recap: Key Trends and Frequently Asked Questions
by Shriram Sharma - June 14, 2022
RSA Conference is the ‘Super Bowl’ of cybersecurity expos, where the world’s leading security professionals gather to share their knowledge and help shape the future of infosec. After a gap year, this year’s conference was a good comeback, with over 26,000 attendees, and plenty of interesting sessio...
Level up your SecOps with Smart SOAR at Splunk .conf22-post_thumbnail
  • Events ,
  • SOAR
Level up your SecOps with Smart SOAR at Splunk .conf22
by Shriram Sharma - May 27, 2022
We’re psyched to meet security leaders from across the globe next month at Splunk’s .conf22 at the MGM Grand in Las Vegas on June 13-16. This year’s in-person conference also includes the option to join virtually, so Splunkers from around the world can watch the all the sessions remotely, access the...
How SOAR Can Help You Attract and Retain Cybersecurity Talent-post_thumbnail
  • SOAR
How SOAR Can Help You Attract and Retain Cybersecurity Talent
by Shriram Sharma - May 12, 2022
Security operations center (SOC) teams play a vital and underappreciated role in the function of any organization, but they are especially crucial in many sectors — including finance, technology, and healthcare. Members of SOC teams work around the clock and are responsible for keeping the company s...
What’s the Difference Between SOAR and SAO?-post_thumbnail
  • SOAR
What’s the Difference Between SOAR and SAO?
by Shriram Sharma - May 3, 2022
Security Orchestration, Automation and Response (SOAR) is a relatively new product category – in fact, it just turned five. Research and consulting firm Gartner is credited with coining the term around April 2017, judging by the earliest web artifacts that we found on Google. Great minds think alike...
Digital Shadows + Smart SOAR-post_thumbnail
Digital Shadows + Smart SOAR
by Walker Banerd - April 13, 2022
D3’s integration with Digital Shadows SearchLight connects threat intelligence, brand protection, data leak detection, and more to automated triage and response. D3 users can enrich alerts with Digital Shadows intelligence, as well as retrieve valuable data on ingested threat reports, includin...
D3’s Event Pipeline is the Perfect Example of Gartner’s ‘Hyperautomation in Security’-post_thumbnail
  • SOAR
D3’s Event Pipeline is the Perfect Example of Gartner’s ‘Hyperautomation in Security’
by Shriram Sharma - March 14, 2022
We recently published a whitepaper about our Event Pipeline, which is sort of like the nerve center of our SOAR platform. In case you haven’t heard of it, the Event Pipeline is D3 NextGen SOAR’s global event playbook. It leverages unlimited out-of-the-box integrations to enable triage, investigation...
ICYMI: Highlights From the Webinar with Forrester’s Allie Mellen on the Future of SOAR-post_thumbnail
  • SOAR
ICYMI: Highlights From the Webinar with Forrester’s Allie Mellen on the Future of SOAR
by Shriram Sharma - March 1, 2022
Our recent webinar with Forrester’s Allie Mellen and D3 Founder Gordon Benoit featured a fascinating debate and discussion on the state and future of SOAR. In case you prefer to read rather than watch or listen, we’ve transcribed the most important parts of their exchange below. Read on for Allie an...
Credence Security Signs Distribution Agreement to Provide D3’s Smart SOAR Across the Middle East & India Region-post_thumbnail
  • News
Credence Security Signs Distribution Agreement to Provide D3’s Smart SOAR Across the Middle East & India Region
by Walker Banerd - November 17, 2021
The following is a reposting of a press release by our partners at Credence Security. Dubai, United Arab Emirates — Wednesday 17th November 2021 – Credence Security, a leading, regional, specialized value-added distributor for cybersecurity, forensics, governance, risk and compliance solutions, toda...
How SOAR Can Help You Solve Cybersecurity Staffing Issues-post_thumbnail
  • SOAR
How SOAR Can Help You Solve Cybersecurity Staffing Issues
by Walker Banerd - November 5, 2021
Even before the pandemic completely reshaped the world of recruiting with an explosion of remote work, it was always hard for most employers to attract and retain qualified cybersecurity professionals. Security pros are in high demand, expensive to hire, and—in the average security operations center...
How to Turn the Lessons of Elite SpecOps into Elite SecOps-post_thumbnail
  • SOAR
How to Turn the Lessons of Elite SpecOps into Elite SecOps
by Walker Banerd - September 28, 2021
We recently published a new whitepaper titled, How the Principles of the Navy SEALs Can Improve Your Use of SOAR, which you can download here. In the whitepaper, we break down four components of the ethos that allows the Navy SEALs to achieve their goals at a level that is virtually unmatched by any...
Why XDR is Not a Replacement for SOAR-post_thumbnail
  • SOAR
Why XDR is Not a Replacement for SOAR
by Walker Banerd - September 3, 2021
Extended Detection and Response—commonly abbreviated to XDR—was first coined in 2018 and has since become an exciting buzzword in the cybersecurity world. Many vendors now offer XDR, which combines several of their products into one integrated offering. XDR grew out of Endpoint Detection and Respons...
D3 Security Expands Global Reach with $10M Investment from Vistara Growth-post_thumbnail
  • News
D3 Security Expands Global Reach with $10M Investment from Vistara Growth
by Walker Banerd - August 31, 2021
Vancouver, BC — August 31, 2021 — D3 Security, the leader in next-generation security orchestration, automation and response (SOAR), today announced it had received a growth equity investment of $10 million USD from Vistara Growth, a provider of flexible growth capital solutions to technology compan...
Breach and Attack Simulation Use Case
by Shriram Sharma - August 17, 2021
Breach and Attack Simulation, Step by Step  Step 1:   The analyst determines what attack scenario they want to simulate. Step 2:   From D3, the analyst activates the assessment in AttackIQ and commands AttackIQ to run all tests. Step 3:   D3 retrieves the results of the assessment. Step 4:  The TTPs...
D3 Security Teams with SYNNEX Corporation to Distribute Advanced SOAR Platform-post_thumbnail
  • News
D3 Security Teams with SYNNEX Corporation to Distribute Advanced SOAR Platform
by Alex MacLachlan - August 3, 2021
D3 Security, the provider of next-generation security orchestration, automation, and response (SOAR) solutions, today announced a distribution agreement with SYNNEX Corporation, a leading provider of distribution, systems design and integration services for the technology industry, to offer the D3 N...
TTP-Based Threat Hunting-post_thumbnail
TTP-Based Threat Hunting
by Walker Banerd - May 25, 2021
Security leaders are increasingly looking to the MITRE ATT&CK matrix to help understand and combat the threats against their environment. Security teams who follow ATT&CK can track the tactics being used by adversaries, the scope of attacks, and the efficacy of their controls—generating crit...
D3’s Upcoming Release is a Launchpad for SOAR Integrations-post_thumbnail
  • SOAR
D3’s Upcoming Release is a Launchpad for SOAR Integrations
by Walker Banerd - March 15, 2021
Integrations are critical to the effectiveness of any SOAR platform, so delays or obstacles to the configuring, testing, and executing of commands between tools can compromise a SOAR implementation before it can get fully up and running. This is an area in which many SOAR platforms struggle. Setting...
KuppingerCole Names D3 an Overall Leader in SOAR Report-post_thumbnail
  • Reports ,
  • SOAR
KuppingerCole Names D3 an Overall Leader in SOAR Report
by Walker Banerd - February 12, 2021
The European analysts KuppingerCole have released their Leadership Compass for Security Orchestration Automation and Response, a comprehensive look at the SOAR marketplace and vendor capabilities. Their extensive analysis of 12 SOAR vendors ranks the leaders in key areas, based on deep evaluation cr...
Test and Optimize Your Security Controls with D3 and AttackIQ-post_thumbnail
  • SOAR
Test and Optimize Your Security Controls with D3 and AttackIQ
by Walker Banerd - February 11, 2021
We are constantly adding new integrations to the list of 300+ tools with which D3 works to automate and orchestrate security operations. One of the most exciting technology partnerships we’ve formed in recent months has been with AttackIQ, a security optimization platform that provides a unique serv...
Year in Review Part 2: The SOAR Industry in 2020-post_thumbnail
  • SOAR
Year in Review Part 2: The SOAR Industry in 2020
by Walker Banerd - January 8, 2021
In this second installment of our 2020 review, we’ll look back at three industry reports that were published in 2020. We’ll see what each one had to say about D3 NextGen SOAR, as well as the SOAR industry overall.   Gartner’s SOAR Market Guide D3 was included as a representative vendor in...
Year in Review Part 1: D3 Highlights From 2020-post_thumbnail
  • SOAR
Year in Review Part 1: D3 Highlights From 2020
by Walker Banerd - January 5, 2021
2020 was challenging for everyone, and of course we felt that at D3 as we adjusted to new conditions throughout the year. Fortunately, however, we were still able to thrive and move our plans forward, despite the challenges, setting us up for a 2021 that we expect to be the best year in our long [&h...
SunBurst Playbooks for the SolarWinds Breach-post_thumbnail
  • SOAR
SunBurst Playbooks for the SolarWinds Breach
by Alex MacLachlan - December 23, 2020
The SolarWinds supply chain compromise has sprung nearly every security team into action in the past week as they try to determine whether any hosts on their network are running the Orion network monitoring software. Moreover, they are checking—and double-checking—for other signs of malicious activi...
Vertosoft Partners with D3 Security to Bring Smart SOAR to U.S. Public Sector-post_thumbnail
  • News
Vertosoft Partners with D3 Security to Bring Smart SOAR to U.S. Public Sector
by Walker Banerd - November 23, 2020
Vertosoft, the company driving emerging technology growth in government, announced today a partnership with D3 Security, a leader in advanced Security Orchestration, Automation, and Response (SOAR) technology. Through the partnership with Vertosoft, D3 Security has been named an approved vendor unde...
What’s New in the Latest Version of D3 Smart SOAR-post_thumbnail
  • SOAR
What’s New in the Latest Version of D3 Smart SOAR
by Walker Banerd - October 23, 2020
We are always making improvements to our Smart SOAR platform, and we recently released a major new update for all of our clients. There are a lot of exciting updates, which can be summarized in a few key themes: Simpler integrations and playbooks. We’ve completely overhauled our playbook editor to m...
The Top 10 Reasons Organizations are Choosing D3 SOAR Over its Competitors-post_thumbnail
  • SOAR
The Top 10 Reasons Organizations are Choosing D3 SOAR Over its Competitors
by Walker Banerd - October 6, 2020
The D3 customer base has been growing rapidly, especially in the past couple of years. Major new clients are signing on, existing clients are expanding their services, and our partners around the world are having great success connecting D3 with their clients. It’s been an exciting time. While the S...
8 Things Gartner Gets Right About SOAR (And 1 Thing They Get Wrong)-post_thumbnail
  • Reports ,
  • SOAR
8 Things Gartner Gets Right About SOAR (And 1 Thing They Get Wrong)
by Alex MacLachlan - September 30, 2020
Gartner’s 2020 Market Guide for Security Orchestration, Automation and Response Solutions (Lawson, Bussa & Sadowski, September 21, 2020) was only released a few days ago, but it’s already become one of the most sought-after resources for security professionals evaluating SOAR. You can download y...
RSA NetWitness + Smart SOAR-post_thumbnail
RSA NetWitness + Smart SOAR
by Walker Banerd - August 24, 2020
D3 acts as a unified dashboard for analysis and investigation of RSA NetWitness Platform alerts, enriching incoming alerts with correlated MITRE ATT&CK matrix techniques, threat intelligence, and historical incident data. From D3, RSA NetWitness users not only benefit from automation and orchest...
5 Ways D3 SOAR Can Help You Prioritize Incidents-post_thumbnail
  • SOAR
5 Ways D3 SOAR Can Help You Prioritize Incidents
by Walker Banerd - July 28, 2020
In almost any SOC, there are more incidents than can be properly investigated. Even with effective rules in your SIEM and other detection tools that rule out the majority of false positives and low-risk events, incident responders are still often overwhelmed with a never-ending queue. SOAR can bring...
D3 Joins the Microsoft Intelligent Security Association-post_thumbnail
  • News ,
  • SOAR
D3 Joins the Microsoft Intelligent Security Association
by Walker Banerd - July 24, 2020
The fight against sophisticated cybersecurity threats requires collaborative effort between the best minds in the industry. That’s why we’re pleased to announce that D3 Security has joined the Microsoft Intelligent Security Association (MISA), a group of technology providers who have integrated thei...
D3 Appoints Spire Solutions as Distributor of Smart SOAR in Middle East and Africa-post_thumbnail
  • News ,
  • SOAR
D3 Appoints Spire Solutions as Distributor of Smart SOAR in Middle East and Africa
by Walker Banerd - June 29, 2020
D3 Security, provider of the leading next-generation SOAR platform, today announced it has appointed Spire Solutions, the Middle East’s preferred security partner, as a value-added distributor in the Middle East and Africa. Under this partnership, Spire Solutions will support the distribution of D3 ...
D3 and Check Point Partner to Help Customers Respond to the Next Generation of Cyber Threats-post_thumbnail
  • News ,
  • SOAR
D3 and Check Point Partner to Help Customers Respond to the Next Generation of Cyber Threats
by Walker Banerd - June 25, 2020
Vancouver, BC—June 25, 2020—D3 Security, the leader in next-generation security orchestration, automation and response (SOAR), today announced a new partnership with Check Point Software Technologies Ltd., a leading provider of cyber security solutions globally, to help security teams automate and o...
SOAR Best Practices Research from Frost & Sullivan-post_thumbnail
SOAR Best Practices Research from Frost & Sullivan
by Denis Zulian - June 19, 2020
Frost & Sullivan just released its Best Practices Report for the Security Orchestration and Automation Response market – with the authors recognizing D3 for its superior technology and strong overall performance. Download this SOAR Best Practices Research to learn about: The customer and b...
Three Reasons to Get Excited About D3’s Partnership with Datadog-post_thumbnail
  • SOAR
Three Reasons to Get Excited About D3’s Partnership with Datadog
by Walker Banerd - June 12, 2020
We are very happy to announce our new partnership with Datadog, the essential monitoring platform for cloud applications. Datadog brings together data from servers, containers, databases, and third-party services to make customers’ stacks entirely observable. With 85% of enterprises moving their app...
Does D3 Integrate With My Security Tools? (Fortinet, McAfee, Symantec, CrowdStrike, Splunk, and More)-post_thumbnail
  • SOAR
Does D3 Integrate With My Security Tools? (Fortinet, McAfee, Symantec, CrowdStrike, Splunk, and More)
by Walker Banerd - June 5, 2020
Integrations are critical to the value you will get out of a SOAR platform. You’ll want a platform that integrates with the security tools you use of course, but not all integrations are created equal, so you’ll also want to ensure that those integrations are feature-rich and don’t require you to do...
Azure Sentinel + Smart SOAR-post_thumbnail
Azure Sentinel + Smart SOAR
by Walker Banerd - May 27, 2020
hrough its integration with Sentinel, D3 can act as the security operations hub for cloud environments or hybrid environments that include on-premise systems. D3 integrates with the Microsoft Azure stack and 260+ other security tools in order to ingest data and orchestrate response actions across an...
Datadog + Smart SOAR-post_thumbnail
Datadog + Smart SOAR
by Walker Banerd - May 26, 2020
Datadog’s Application Performance Monitoring (APM) and Security Monitoring solutions can detect IT and security issues from across integrated cloud applications, networks, and infrastructure, but lack a true incident response capability. D3’s integration with Datadog fills this gap by turning ...
LogRhythm + Smart SOAR-post_thumbnail
LogRhythm + Smart SOAR
by Walker Banerd - May 21, 2020
D3 acts as a unified dashboard for analysis and investigation of LogRhythm events, enriching them with correlated MITRE ATT&CK matrix techniques, threat intelligence, and historical incident data. From D3, LogRhythm users not only benefit from automation and orchestration-powered response workfl...
Check Point + Smart SOAR-post_thumbnail
Check Point + Smart SOAR
by Walker Banerd - May 20, 2020
The combination of Check Point and D3 SOAR provides the SOC with vastly improved visibility, intelligence and agility. Events in Check Point trigger automated playbooks in D3, which gather context from across the security ecosystem, including correlation against the MITRE ATT&CK framework. If th...
D3 Partners with Chronicle to Combine Security Analytics and Orchestration-post_thumbnail
  • News
D3 Partners with Chronicle to Combine Security Analytics and Orchestration
by Walker Banerd - April 22, 2020
We are pleased to announce that D3 has joined Chronicle’s network of technology partners as an Index Partner. Chronicle will also join the D3 CONNECT partner program. The partnership will be supported by a robust integration between D3’s next-generation SOAR platform and Chronicle’s cloud-based secu...
D3 Security Wins Frost & Sullivan’s 2020 Global Customer Value Leadership Award-post_thumbnail
  • News
D3 Security Wins Frost & Sullivan’s 2020 Global Customer Value Leadership Award
by Walker Banerd - April 21, 2020
Frost & Sullivan, a globally renowned business consulting and research firm, recently recognized D3 Security with their 2020 Global Customer Value Leadership Award for helping customers streamline and automate their security operations. The award is based on Frost & Sullivan’s analysis of th...
Download Gartner’s Tips for Selecting the Right Tools for Your SOC-post_thumbnail
  • Reports
Download Gartner’s Tips for Selecting the Right Tools for Your SOC
by Walker Banerd - April 3, 2020
Earlier this year, Gartner published some great recommendations around purchasing security tools (Tips for Selecting the Right Tools for Your Security Operations Center; Bussa & D’Hoinne, January 23, 2020), written by Toby Bussa and Jeremy D’Hoinne. We’re very happy to be offering the document a...
IBM QRadar + Smart SOAR-post_thumbnail
IBM QRadar + Smart SOAR
by Walker Banerd - April 1, 2020
Unify Detection, Analysis, and Response for QRadar Offenses D3 acts as a unified dashboard for analysis and investigation of QRadar offenses, enriching alerts with correlated MITRE ATT&CK matrix techniques, threat intelligence, and historical incident data. From D3, QRadar users not only benefit...
What is Hybrid Cloud Security?-post_thumbnail
  • Industry ,
  • SOAR
What is Hybrid Cloud Security?
by Walker Banerd - March 27, 2020
Hybrid Cloud Security describes the unique process of applying cybersecurity tactics and methods to environments that are split across multiple types of cloud resources. Typically, hybrid cloud environments include are a private cloud, which a company generally operates and hosts on-premise, and a p...
D3 SOAR for Hybrid Environments-post_thumbnail
D3 SOAR for Hybrid Environments
by Walker Banerd - March 11, 2020
More and more companies are moving systems and servers to cloud hosting solutions like Microsoft Azure, but many of them are not committing entirely to the cloud, keeping some systems on-premise. This hybrid model creates an issue around security, because the company is left managing two sets of sec...
See D3’s Next-Generation SOAR at RSA Conference 2020-post_thumbnail
  • Events ,
  • News
See D3’s Next-Generation SOAR at RSA Conference 2020
by Walker Banerd - February 10, 2020
The D3 team is excited to be gearing up for one of the biggest cybersecurity events of the year: RSA Conference 2020. We’ve been attending the conference for many years, and we always come back inspired by the partners, clients, and industry leaders we cross paths with at the event. RSA Conference 2...
Fill the form below to book your meeting at RSA 2020
by Alex MacLachlan - February 6, 2020
Experience in person the only next-generation SOAR platform that combines security orchestration with MITRE ATT&CK and full-lifecycle incident response. Plus, speak with our SOAR and ATT&CK experts and pick up your own “Good in the SOC” swag....
Next-Generation SOAR: Codeless Playbooks and Integrations-post_thumbnail
  • SOAR
Next-Generation SOAR: Codeless Playbooks and Integrations
by Walker Banerd - January 31, 2020
Nearly all security operations centers (SOCs) with SOAR have learned that their playbooks and integrations require more maintenance than expected. That’s because SOAR playbooks must be manually updated, often using Python, whenever a data source or integration point changes. If your SOC has dozens o...
Why Integrations are Easier with D3 SOAR-post_thumbnail
  • SOAR
Why Integrations are Easier with D3 SOAR
by Walker Banerd - January 23, 2020
While SOAR platforms can do a lot of things, their effectiveness will be largely contingent on how well they integrate with their clients’ security infrastructure. That’s why D3 integrates with more than 260 applications in order to orchestrate more than 400 different actions. Integrating with D3 ha...
D3 SOAR 2.0 Release Announcement-post_thumbnail
  • MITRE ATT&CK ,
  • News
  • SOAR
D3 SOAR 2.0 Release Announcement
by Walker Banerd - January 15, 2020
We are proud to announce the release of our most ambitious and innovative project yet: D3 SOAR 2.0. While it may be a bold claim to make, we truly see this new release as pushing the SOAR market forward with both improvements to previous capabilities and entirely new capabilities that no other platf...
3 Things You Can Do With Next Generation SOAR That You Couldn’t Do Before-post_thumbnail
  • MITRE ATT&CK ,
  • SOAR
3 Things You Can Do With Next Generation SOAR That You Couldn’t Do Before
by Walker Banerd - January 10, 2020
When you’ve been in the industry as long as D3, you see a lot of evolution in software capabilities. In the early years, it was all about incident response and case management. Playbooks were entirely manual, and integrations were a secondary aspect of the solutions on the market at that time. Next,...
SIEM Alert Enrichment with D3 SOAR-post_thumbnail
SIEM Alert Enrichment with D3 SOAR
by Walker Banerd - December 3, 2019
Turn Alerts into Intelligent, Automation-Powered Response Ingesting alerts from a SIEM for enrichment, analysis, and automation-powered response is at the core of the D3 SOAR platform. D3 integrates seamlessly with all major SIEMs. Events can be ingested into D3 either manually or based on SIEM rule...
D3 SOAR for Threat Hunting-post_thumbnail
D3 SOAR for Threat Hunting
by Walker Banerd - November 14, 2019
Leverage the Power of MITRE ATT&CK and Advanced Orchestration in Your Threat Hunting Signature-based detection and prevention methods make up the bulk of most organizations’ cybersecurity program, but today’s most sophisticated adversaries are skillful at circumventing these methods. This is why...
Where to Start With Incident Response Automation-post_thumbnail
  • SOAR
Where to Start With Incident Response Automation
by Walker Banerd - November 1, 2019
Lots of valuable opportunities for incident response automation are available to security teams, especially when leveraging a SOAR platform. While most security teams are already using some amount of automation, extensive automation in the SOC is still quite rare. In fact, we confirmed this in a rec...
Why Do I Need SOAR if I Have… (SIEM, ITSM, TIP, EDR)-post_thumbnail
  • SOAR
Why Do I Need SOAR if I Have… (SIEM, ITSM, TIP, EDR)
by Walker Banerd - October 17, 2019
As a relatively new category of security tools, there are lots of misconceptions around Security Orchestration, Automation, and Response (SOAR). Some of this confusion is around what types of SOCs will benefit most from SOAR. It is understandable to think that a SOC that already has numerous securit...
Visit D3 at Splunk .conf19-post_thumbnail
  • Events
Visit D3 at Splunk .conf19
by Walker Banerd - October 16, 2019
As we have for the past several years, the D3 team will be attending Splunk’s annual conference next week. This year’s event is called Splunk .conf19, and it will take place at the Venetian Sands Expo in Las Vegas from October 22-24. We’re excited to be attending again this year and we have a lot [&...
Lastline + Smart SOAR-post_thumbnail
Lastline + Smart SOAR
by Walker Banerd - October 15, 2019
Automatically Integrate Advanced Malware Analysis into Response Workflows D3’s integration with Lastline brings powerful, AI-based malware analysis, risk scoring, detonation, and threat intelligence into D3’s incident response workflows. Joint users benefit from connecting Lastline’s Deep Content In...
Microsoft + Smart SOAR-post_thumbnail
Microsoft + Smart SOAR
by Walker Banerd - October 9, 2019
Detect and Protect Against Cloud Security Threats with Intelligent Orchestration D3’s integrations with Microsoft tools help organizations secure their Azure environments and Exchange mailboxes against all kinds of threats. D3 can act as a central hub for your cloud security operations, intaking ale...
CrowdStrike + Smart SOAR-post_thumbnail
CrowdStrike + Smart SOAR
by Walker Banerd - September 30, 2019
Orchestrate Intelligent Endpoint Protection and Automated Analysis Feature-rich integrations with CrowdStrike tools make D3 the perfect command center for event intake, threat intelligence enrichment, malware analysis, and orchestrating actions across endpoints. D3’s automation-powered playbooks, MI...
D3 CONNECTED Global Sales Channel and Partner Program Demonstrates Significant Growth in Q2 2019-post_thumbnail
  • News
D3 CONNECTED Global Sales Channel and Partner Program Demonstrates Significant Growth in Q2 2019
by Walker Banerd - September 17, 2019
VANCOUVER, British Columbia–D3 Security, an innovator in security orchestration, automation and response (SOAR) technology, today announced that their CONNECTED Global Sales Channel and Partner Program has experienced significant growth since its inception in October of last year. Coming off c...
Sherlock in the SOC—SecurityWeek-post_thumbnail
  • Incident Response
Sherlock in the SOC—SecurityWeek
by Walker Banerd - August 19, 2019
A new article by Stan Engelbrecht, Director of D3’s Cyber Security Practice, is currently featured on SecurityWeek. The character Sherlock Holmes once said, “There is a strong family resemblance about misdeeds, and if you have all the details of a thousand at your finger ends, it is odd if you can&#...
Data Breach of the Month: City Power-post_thumbnail
  • Data Breach
Data Breach of the Month: City Power
by Walker Banerd - August 13, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
How SOAR Can Help Support the Transition of IT Staff to Security Operations-post_thumbnail
  • SOAR
How SOAR Can Help Support the Transition of IT Staff to Security Operations
by Walker Banerd - August 8, 2019
Because of the well-documented cybersecurity skills gap, it has become a significant trend for organizations to rely on IT personnel to transition to security operations or to take on additional security responsibilities. This is a difficult transition for both the employees and the organization tha...
Why Incident Response Must Adopt a Kill Chain Perspective—SecurityWeek-post_thumbnail
  • SOAR
Why Incident Response Must Adopt a Kill Chain Perspective—SecurityWeek
by Walker Banerd - July 19, 2019
A new article by Stan Engelbrecht, Director of D3’s Cyber Security Practice, is currently featured on SecurityWeek. Emerging technology is enabling incident response tools—including SOAR platforms like D3—to go beyond individual alerts and address complex attacks holistically. This welcome change re...
Download Gartner’s 2019 Market Guide for SOAR Solutions-post_thumbnail
  • SOAR
Download Gartner’s 2019 Market Guide for SOAR Solutions
by Walker Banerd - July 10, 2019
Note: Download the 2019 Gartner Market Guide for Security Orchestration, Automation and Response Solutions here. Gartner recently published its first ever Market Guide for Security Orchestration, Automation and Response Solutions, written by Claudio Neiva, Craig Lawson, Toby Bussa, and Gorka Sadowsk...
Data Breach of the Month: NASA-post_thumbnail
  • Data Breach
Data Breach of the Month: NASA
by Walker Banerd - July 5, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
Breach of the Month: Fast Retailing-post_thumbnail
  • Data Breach
Breach of the Month: Fast Retailing
by Walker Banerd - June 7, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
D3 Supports Every Tier of SOC Analysts-post_thumbnail
  • Incident Response ,
  • SOAR
D3 Supports Every Tier of SOC Analysts
by Walker Banerd - May 17, 2019
In a security operation center (SOC), analysts are often categorized into four tiers, each with different roles and responsibilities. The definition of each tier varies a bit, depending on who you ask, but a generally accepted description of a Tier 1 analyst would be someone who monitors alerts from...
FireEye + Smart SOAR-post_thumbnail
FireEye + Smart SOAR
by Alex MacLachlan - May 16, 2019
Rapidly Analyze and Combat Threats Across the Ecosystem D3’s App for FireEye allows you to streamline SecOps and IR workflows, reduce manual coordination, and augment the power of your existing tools. With D3 acting as a hub for endpoint, network, and email security alerts, all potential incidents c...
Data Breach of the Month: FBI National Academy Associates-post_thumbnail
  • Data Breach
Data Breach of the Month: FBI National Academy Associates
by Walker Banerd - May 7, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
SOAR for Fortinet: Why D3 is the Perfect Fit-post_thumbnail
  • SOAR
SOAR for Fortinet: Why D3 is the Perfect Fit
by Walker Banerd - April 23, 2019
Security orchestration, automation, and response (SOAR) platforms are a force multiplier in the SOC because of how they make other security tools more effective. This is especially true when you combine D3 SOAR with the Fortinet Security Fabric. With this unique partnership, you don’t just get certi...
D3 Security Joins Symantec Technology Integration Partner Program-post_thumbnail
  • News ,
  • SOAR
D3 Security Joins Symantec Technology Integration Partner Program
by Alex MacLachlan - April 11, 2019
MOUNTAIN VIEW, Calif.– D3 Security today announced it has joined the Symantec Technology Integration Partner Program (TIPP), a global ecosystem composed of more than 100 participating technology companies, in a collaborative effort to combat cyber-crime and secure the cloud generation. As part...
Data Breach of the Month: Jackson County-post_thumbnail
  • Data Breach ,
  • SOAR
Data Breach of the Month: Jackson County
by Walker Banerd - April 8, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest state-sponsored mega breach, and other times we’ll focus on a lesser known incident that has outsized implications fo...
Data Breach of the Month: Singapore Ministry of Health-post_thumbnail
  • Data Breach
Data Breach of the Month: Singapore Ministry of Health
by Walker Banerd - February 14, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...
Data Breach of the Month: EU Diplomatic Cables-post_thumbnail
  • Data Breach
Data Breach of the Month: EU Diplomatic Cables
by Walker Banerd - January 7, 2019
Welcome back to our Data Breach of the Month series, where we look at a notable cyber incident or data breach from the past month. Sometimes we’ll offer deeper analysis of the latest big breach, and other times we’ll focus on a lesser known incident that has outsized implications for the security in...

Get Started with D3 Security

One platform to stop alert overwhelm. Transform how your security team works, by focusing its resources on real threats.