ProtectWise, the enterprise security company that delivers pervasive visibility, automated threat detection and unlimited forensic exploration, and Demisto, Inc., an innovator in Security Operations technology, today announced an integration partnership. ProtectWise and Demisto are partnering to empower security teams to rapidly move from breach detection to response and resolution, while leveraging the recorded network for retrospective analysis of advanced threats.
The ProtectWise and Demisto integration enables joint customers to fetch key ProtectWise observations, including detailed packet capture, for creating incidents in Demisto. Demisto playbooks leverage rich data collected by ProtectWise Grid for hunting file, IP, domain and other indicators across the enterprise, enabling faster and more accurate response to incidents. Demisto's real-time interactive investigation using ChatOps extends ProtectWise forensics exploration with a ChatBot interface and empowers analysts to auto-document and investigate faster.
"ProtectWise is committed to providing the security industry with an open platform for threat investigation, and our partnership with Demisto helps make that possible," said Ramon Peypoch, Chief Product Officer, ProtectWise. "Together, ProtectWise and Demisto enable security analysts to manage their operations more efficiently while arming them with limitless retrospective and forensic capabilities to stay ahead of advanced threats."
"Demisto is the connecting fabric for customers' security infrastructure and teams," said Rishi Bhargava, Co-founder, Demisto. "Our integration with ProtectWise enables joint customers to leverage the power of automation and collaboration, along with the rich forensics data for incident investigation and response. We are excited to partner with ProtectWise and are seeing great market traction for the joint solution already. The recent funding announcements by both companies are a testament to our innovation brought to market."
ProtectWise delivers a new utility model for enterprise security. Its platform The ProtectWise Grid provides analysts with automated detection of advanced attacks, a long packet capture retention window, and the ability to intuitively interact with massive volumes of data through an advanced visual presentation. With its unique form factor and model for delivering security entirely from the cloud, The ProtectWise Gridmakes possible a single strategy for managing and securing enterprise, cloud and industrial control system (ICS) environments.
The Demisto Security Operations Platform enables enterprises to integrate leading threat feeds with Demisto to manage indicators and automate threat hunting operations, saving time and significantly reducing the risk of exposure. Demisto offers a comprehensive security operations platform with automation playbooks, more than 100 product integrations, incident case management, and threat feed aggregation.
Demisto Enterprise enables products with a Bot-powered security ChatOps platform for automating playbooks and response tasks, and detecting duplicate incidents. With this integration, Demisto customers have access to dedicated playbooks for The ProtectWise Grid to immediately convert threat observations into actions taken within their Security Operations Centers (SOCs). The integration also extends threat protection from ProtectWise into more security environments via Demisto's customer and partner ecosystem.