Smart SOAR Integration

Integrating Smart SOAR with Tenable connects vulnerability scans to your security operations command center. Smart SOAR ingests Tenable scan reports, analyzes them, and turns them into automation-powered response playbooks. The integration enables threat hunting across endpoints while standardizing and accelerating response to vulnerabilities.

Integration features

Ingest and parse vulnerability scan reports in Smart SOAR
Orchestrate response tasks to quickly remediate vulnerabilities
Search across past vulnerability scans to inform threat hunting
Correlate vulnerabilities with adversary techniques using the MITRE ATT&CK matrix

Key Use Cases

#1: Vulnerability Scan Response

Smart SOAR’s integration with Tenable feeds vulnerability scans into automation-powered response workflows. When Tenable runs a scan across endpoints and detects a vulnerability, Smart SOAR reads and parses the scan report and triggers an incident response playbook. Smart SOAR determines the endpoint on which the vulnerability was found and enriches the report with contextual information. The user can notify the necessary teams from Smart SOAR or generate an IT ticket to schedule a patch or update. If the organization has existing scripts for patch management, Smart SOAR can trigger those directly.

Tenable  Integration

#2: Patch Management and Verification

As described in the previous use-case, Smart SOAR can generate a ticket for the IT team to resolve a vulnerability found on endpoints via a patch or update. When the IT team closes the ticket, a notification is generated. Smart SOAR then schedules a rescan of the affected endpoints via Tenable to verify that the patch has been successfully applied. Smart SOAR then ingests the rescan report so that the security analyst can confirm that the vulnerability has been remediated, and so that the entire process is documented in the SOC.

Tenable  Integration

Meet Our Friends

Our Connected SOAR Security Alliance brings hundreds of vendors together, allowing customers to benefit from our deep industry relationships and fully vendor-agnostic, independent SOAR platform.

X Tenable  Integration

Get Started with D3 Security

One platform to stop alert overwhelm. Transform how your security team works, by focusing its resources on real threats.