Juniper Networks SRX + D3 Smart SOAR
Orchestrate Immediate Firewall Management Tasks
Juniper provides advanced firewalls that support cloud, on-premise, and hybrid environments. With D3’s SOAR capabilities and Juniper’s firewall solution, users can automate firewall rule operations and run thousands of commands across integrated tools while leveraging firewall data.
Benefits and Capabilities
D3’s integration team takes the burden of integrations off your hands by building, maintaining, and upgrading the best possible connections between tools. We have closely studied Juniper to produce a powerful integration that enables you to:
- Rapidly gather alarm details, event logs, statuses, and other data
- Automate rule creation and deletion using Smart SOAR playbooks
- Block IP, application, sessions, etc., from within Smart SOAR
Use CAse
Automated Malware Analysis and Protection
The integration of Smart SOAR with Juniper Networks SRX allows users to automate a number of critical IR actions, including file detonation, malware analysis, and indicator blocking. These actions can be wholly managed from Smart SOAR, enabling quick resolutions with little to no analyst effort, and improved documentation.
- Triage alerts and identify genuine threats
- Expand your investigation based on newly identified IOCs
- Act fast against threats on your network
Use Case
Indicator-Based Firewall Policy Management
Smart SOAR playbooks can run predetermined tasks using Juniper’s firewall. For example, a daily playbook can check malicious indicators against existing firewall rules and update the rules when an indicator that slipped through is identified. By automating firewall policy management, analysts are freed up for strategic problem-solving, plus, the overall environment is less vulnerable to attack.
- Query Juniper to retrieve active policies
- Block and unblock Ips
- Turn threat intelligence into updated firewall policies
Why Smart SOAR?
Joint users of Juniper and D3 Smart SOAR don’t just get automated network security, they also get the countless other features that make Smart SOAR the leading independent SOAR solution, including:
Expert-built codeless integrations across the stack
Tier 1–3 automation, based on deep research into the capabilities of common tools
The Event Pipeline, which reduces alert volume by up to 98%
Cross-dimension correlation, which acts across tools, timeframes, TTPs, and artifacts
Juniper Integration: Summary
Integrations Done the Right Way
An unlimited number of pre-built integrations, expertly maintained by the largest technical team in security automation. Thoroughly researched, tested and built—and delivered for free. Always.