AhnLab SOAR

For SOC automation  

Best Choice

AhnLab SOAR integrates AhnLab's long-standing security control know-how to implement advanced security operations through standardized playbooks and integration with various solutions. 

AhnLab SOAR

For SOC automation  

Best Choice


AhnLab SOAR integrates AhnLab's long-standing security control know-how to implement advanced security operations through standardized playbooks and integration with various solutions.


For SOC automation  

The best solution

AhnLab SOAR

 

Threat detection through log integration/analysis, powerful real-time analysis, and issue analysis through various visualizations  


Contact us →

Why AhnLab SOAR? 

Increasing events and security equipment due to intelligent and sophisticated threats have resulted in an increase in simple repetitive tasks and differences in response quality depending on the handler.  To improve these problems, Gartner defined a response platform called SOAR that supports organic cooperation between people and machines according to standardized work processes.  AhnLab SOAR is the first response platform in Korea to introduce the SOAR concept, securing visibility into business processes such as analysis, response, and operation, and enabling work standardization and organic response through automation and orchestration.

Why AhnLab SOAR? 

 Increasing events and security equipment due to intelligent and sophisticated threats have resulted in an increase in simple repetitive tasks and differences in response quality depending on the handler.

 To improve these problems, Gartner defined a response platform called SOAR that supports organic cooperation between people and machines according to standardized work processes. 

 AhnLab SOAR is the first response platform in Korea to introduce the SOAR concept, securing visibility into business processes such as analysis, response, and operation, and enabling work standardization and organic response through automation and orchestration. 

Why AhnLab SOAR

Ensuring security efficiency through automation 

01


Improving the quality of threat response 


We provide various playbooks based on threat response scenarios that contain security operation know-how accumulated over decades, thereby improving the overall quality of threat response. In addition, we provide standardized playbooks and can also reproduce playbooks optimized for each client's work. 

02


SOAR, where control know-how is concentrated 


AhnLab SOAR provides not only basic SOAR functions but also various functions that can be applied directly to existing control environments, such as ticket processing and analysis. 


 

03


Decision support through machine learning 


SOAR enables automatic threat identification and automated reasoning on identified threats through machine learning-based analysis modules. It also helps customers make accurate security decisions by grouping similar threats and automating false positive analysis. 

Why AhnLab SOAR

Ensuring security efficiency through automation

01


Improving the quality of threat response 


We provide various playbooks based on threat response scenarios that contain security operation know-how accumulated over decades, thereby improving the overall quality of threat response. In addition, we provide standardized playbooks and can also reproduce playbooks optimized for each client's work. 

02


SOAR, where control know-how is concentrated 


AhnLab SOAR provides not only basic SOAR functions but also various functions that can be applied directly to existing control environments, such as ticket processing and analysis. 

03


Decision support through machine learning


SOAR enables automatic threat identification and automated reasoning on identified threats through machine learning-based analysis modules. It also helps customers make accurate security decisions by grouping similar threats and automating false positive analysis. 

key Features

SOAR provides standardized Playbooks and free editing functions, 

and the concept of orchestration can be introduced into work by linking with various solutions.

SERVICE 01


Orchestration


· Coordination of each task belonging to one response process

· Integration with various solutions


SERVICE 02


Automation


· Built-in Playbook provided and Playbook production support provided

· Support for flexible automation actions using the script engine

· Added Playbook Simulator support


SERVICE 03


Case Management


· Support for management of response history and decision-making and collaboration between workers

· Create and manage cases by type, such as threat response, security operations, work requests, and support


SERVICE 04


Dashboard


· Support for public and private dashboards

· Public Dashboard: Information on selected widgets within the viewing period

· Personal Dashboard: Performance history information within the query conditions by account

Key Feautures

SOAR provides standardized Playbooks and free editing functions, 

and the concept of orchestration can be introduced into work by linking with various solutions.


SERVICE 01


Orchestration


· Coordination of each task belonging to one response process

· Integration with various solutions



SERVICE 02


Automation 


· Built-in Playbook provided and Playbook production support provided

· Support for flexible automation actions using the script engine

· Added Playbook Simulator support



SERVICE 03


Case Management 


· Support for management of response history and decision-making and collaboration between workers

· Create and manage cases by type, such as threat response, security operations, work requests, and support



SERVICE 04


Dashboard 


· Support for public and private dashboards

· Public Dashboard: Information on selected widgets within the viewing period

· Personal Dashboard: Performance history information within the query conditions by account


Introduction effect 

AhnLab SOAR automates simple, repetitive tasks that were manually handled by people, instantly selecting and responding to each case, and can upgrade response quality with a standardized response system based on Playbook.


Additionally, an integrated and organic response is realized by linking various solutions, allowing work time previously devoted to simple repetitive tasks to be invested in more specialized and high-value tasks such as threat analysis.

Introduction effect

AhnLab SOAR automates simple, repetitive tasks that were manually handled by people, instantly selecting and responding to each case, and can upgrade response quality with a standardized response system based on Playbook.


Additionally, an integrated and organic response is realized by linking various solutions, allowing work time previously devoted to simple repetitive tasks to be invested in more specialized and high-value tasks such as threat analysis.


FAQ

If you have any questions, please resolve them through frequently asked questions.

Some things to consider for implementation are:


1) The organization's work process must be clearly defined.
2) Since automation cannot be applied to all tasks, the target of automation must be considered and the risks of automation must also be considered.
3) It is necessary to identify solutions and assets being used as secondary tasks of 1 and 2.
4) Since continuous maintenance of the playbook is necessary, it is necessary to consider the operation plan after introduction.

SOAR products are not solutions that detect threats, but rather platforms that support standardized, automated response procedures for detected threats. 

That's why you need a SIEM to make the most effective use of your SOAR product. 

If you don't have a SIEM, you'll need a management solution like Unified Logs.

AhnLab SOAR is not only a security solution such as SIEM, IPS, firewall, and threat intelligence platform, but also

It can also be integrated with various business systems such as Email, Jira, and Database.

AhnLab SOAR automates simple, repetitive tasks that were previously handled manually by people, and improves process visibility and response quality with a standardized response system based on playbooks.

① Shortening response time and rapid decision-making
② Upgrading response quality
③ Ensuring visibility of the process
④ Ensuring efficiency in human resource management (simple tasks > analysis tasks)

CONTACT

INSPIEN aims to be a business partner that prioritizes enhancing customer value, 

drawing on the accumulated experience and technical knowledge of all our employees.


CONTACT

INSPIEN aims to be a business partner that prioritizes enhancing customer value, 

drawing on the accumulated experience and technical knowledge of all our employees.