D3 SOAR

Case Management

A Purpose-Built System for Enterprise Investigations

With D3’s Case Management module, SOC and IR teams can formalize security operations and post-incident workflow. Investigators also benefit from an array of built-in tools and features, from relationship visualization and interactive timelines, to granular role-based access controls and fully guided deep investigations.


RECENT UPDATES

McAfee ESM – SIEM

D3’s McAfee ESM SIEM applet now includes McAfee-approved certification.

Timeline and Link Analysis

D3 dynamically generates timelines and link analysis, giving analysts a real-time view of critical relationships as the incident response evolves. Users can drill down on entities to reveal layers of context, and store timeline and link analysis graphics as case artifacts.

Timeline and Link Analysis

D3 dynamically generates timelines and link analysis, giving analysts a real-time view of critical relationships as the incident response evolves. Users can drill down on entities to reveal layers of context, and store timeline and link analysis graphics as case artifacts.

Evidence Management

As artifacts are stored in D3, the system automatically grabs context from available sources and builds out detailed “entity” profiles, which are then used for correlation, documentation, and reporting. D3 provides detailed audit logs, chains-of-custody, and sign-in/out for both physical and digital evidence.

Evidence Management

As artifacts are stored in D3, the system automatically grabs context from available sources and builds out detailed “entity” profiles, which are then used for correlation, documentation, and reporting. D3 provides detailed audit logs, chains-of-custody, and sign-in/out for both physical and digital evidence.

Data Privacy

D3’s information access controls and data privacy features are the strongest in the industry. Role-based access controls extend control down to the field level, while several levels and methods of encryption are available.

Data Privacy

D3’s information access controls and data privacy features are the strongest in the industry. Role-based access controls extend control down to the field level, while several levels and methods of encryption are available.

INTEGRATION STATION

Simplify your security with 200+ out-of-the-box integrations

SIEM

Threat Intelligence

ITSM

Network Security

Identity

Forensic

Email

AWARDS & RECOGNITION

D3 has been recognized by industry analysts for its case management and automated incident response solutions. These awards—including 8 wins in 2018 alone—are often attributed to D3’s unique mix of leading-edge innovation within a battle-tested and deeply functional platform.