D3’s integrations with Cisco allow you to streamline SecOps and IR workflows, reduce manual coordination, operationalize the MITRE ATT&CK framework, and fully leverage existing tool investments. By using D3 to centralize, enrich, and correlate Cisco threat intelligence and contextual data, you make that data more actionable for your SOC. With D3’s Cisco integrations, you can automate SOC tasks that execute across Firepower Management Center, Threat Grid, and the rest of your security tools.
Integration | Capabilities |
---|---|
Cisco AMP Endpoint Security | D3 ingests events from AMP Endpoint Security and orchestrates actions including managing file lists and retrieving endpoint and group information. |
Cisco Meraki | D3 enables network security management through Meraki by orchestrating firewall rules, updating and removing devices, and retrieving data for investigations. |
Cisco SecureX Threat Response | D3 ingests SecureX threat response’s aggregated threat intelligence to enrich IOCs with reputation information. |
Cisco Threat Grid | D3 uses Threat Grid to detonate potentially malicious files and ingest threat data. |
Cisco Umbrella | D3 integrates with Umbrella’s Investigate & Enforcement API to ingest numerous threat intelligence fields, including detailed domain information. |
Our Connected SOAR Security Alliance brings hundreds of vendors together, allowing customers to benefit from our deep industry relationships and fully vendor-agnostic, independent SOAR platform.