sb-as logo
Story image

Gartner names ThreatQuotient a representative vendor for SOAR

12 Oct 2020

Security operations platform provider ThreatQuotient has been included as a Representative Vendor in the 2020 Gartner Market Guide for Security Orchestration, Automation and Response (SOAR) Solutions. 

As defined by Gartner, SOAR solutions “combine incident response, orchestration and automation, and threat intelligence (TI) management capabilities in a single platform.”

A representative vendor provides an example within a market guide to help readers understand the kinds of offerings that are defining the market itself. While it is not an endorsement or rating, it shows that a vendor has offerings that are helping move the market forward.

A statement from ThreatQuotient says that SOAR platforms are evolving towards what it has been developing for years – a full-featured security operations platform designed to provide companies with the relevant, contextual intelligence and automation needed to support multiple teams and capabilities. 

It adds that as threat intelligence is essential for security operations, the company’s data-driven approach to SOAR provides high confidence in the intelligence being used, the decisions that are made and the incident response workflows that are executed.

ThreatQ is a threat-centric security operations platform that aggregates, scores, and prioritises intelligence. 

The platform allows organisations to unify their cybersecurity infrastructure and components into a single defence ecosystem to improve the approach to security investigations and the meantime to respond to cyberthreats. 

Additional use cases for ThreatQ include threat intelligence management, threat hunting, spear phishing, alert triage and vulnerability management.

“We are encouraged by the evolving definition and industry understanding of SOAR, which is becoming more inclusive of threat intelligence and security incident response platforms,” says ThreatQuotient president and CEO John Czupak. 

“ThreatQuotient’s approach to SOAR platforms starts with the threat because we believe you cannot defend against or respond to what you do not understand. We believe Gartner’s latest Market Guide for SOAR Solutions validates the growing need for tools that are complementary to an organisation’s arsenal of products and processes already in place. We are committed to continuing to meet the market need for a security operations platform that improves the effectiveness of the SOC.”

Customer-controlled prioritisation within ThreatQ is based on an organisation’s risk profile and their own set of scoring parameters, and ThreatQ automatically filters out noise and reveals the right priorities for action. 

To ensure teams remain focused on high-priority threats and to reduce false positives, the self-tuning Threat Library learns, recalculates and reevaluates priorities based on a continuous flow of new data and context into ThreatQ. 

The company claims that through automation and optimisation with ThreatQ, organisations can achieve results such as freeing-up two to three full-time security analysts for higher-level tasks.