# Best Security Orchestration, Automation, and Response (SOAR) Software - Page 2

*By [Brandon Summers-Miller](https://research.g2.com/insights/author/brandon-summers-miller)*


Security orchestration, automation, and response (SOAR) software products are tools used to help integrate security technologies and automate incident-related tasks. These tools integrate with a company’s existing security solutions to help users build and automate workflows, simplifying the incident response process and reducing the amount of human intervention necessary to handle security incidents. Companies use these tools to create a centralized system complete with visibility into a company’s security software and operational processes. These tools also reduce the time it takes to respond to incidents, as well as the potential for human error in remediating security threats and vulnerabilities.

SOAR platforms combine aspects of [vulnerability management](https://www.g2.com/categories/vulnerability-management), [incident response](https://www.g2.com/categories/incident-response), and [security information and event management (SIEM)](https://www.g2.com/categories/security-information-and-event-management-siem) solutions. SOAR products are designed to provide some of each tool’s respective functionality or integrate with third-party tools. Once integrated, processes can be designed to identify incidents and automate remediation tasks.

To qualify for inclusion in the Security Orchestration, Automation, and Response (SOAR) category, a product must:

- Integrate security information and incident response tools
- Allow security professionals to build response workflows
- Automate incident management and response tasks within workflows
- Provide formalized incident, workflow, and performance reports






## G2 Grid® for Security Orchestration, Automation, and Response (SOAR) Software
![G2 Grid® for Security Orchestration, Automation, and Response (SOAR) Software plotting products by satisfaction and market presence](https://www.g2.com/categories/security-orchestration-automation-and-response-soar/grids.png?focus%5B%5D=98376&focus%5B%5D=120746&focus%5B%5D=139264&focus%5B%5D=164907&focus%5B%5D=122123&focus%5B%5D=55254&focus%5B%5D=58203&focus%5B%5D=30500)
Highlighted products: Tines, n8n, KnowBe4 PhishER/PhishER Plus, Torq AI SOC Platform, Microsoft Sentinel, ServiceNow Security Operations, Check Point Infinity Platform, and Google Security Operations.
Underlying data: [Grid® JSON](https://www.g2.com/categories/security-orchestration-automation-and-response-soar/grids.json?focus%5B%5D=tines&amp;focus%5B%5D=n8n&amp;focus%5B%5D=knowbe4-phisher-phisher-plus&amp;focus%5B%5D=torq-ai-soc-platform&amp;focus%5B%5D=microsoft-sentinel&amp;focus%5B%5D=servicenow-security-operations&amp;focus%5B%5D=check-point-infinity-platform&amp;focus%5B%5D=google-security-operations)


## How Many Security Orchestration, Automation, and Response (SOAR) Software Products Does G2 Track?
**Total Products under this Category:** 80

### Category Stats (Jul 2026)
- **Average Rating**: 4.53/5 The average rating of products in this category, based on all submitted ratings
- **Top Trending Product**: Forescout Platform (+0.74%) - Among all products in this category, Forescout Platform recorded the largest rating increase compared to last month
*Last updated: July 16, 2026*


## How Does G2 Rank Security Orchestration, Automation, and Response (SOAR) Software Products?

**Why You Can Trust G2's Software Rankings:**

- 30 Analysts and Data Experts
- 3,400+ Authentic Reviews
- 80+ Products
- Unbiased Rankings

G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category.


## Which Security Orchestration, Automation, and Response (SOAR) Software Is Best for Your Use Case?

- **Leader:** [Tines](https://www.g2.com/products/tines/reviews)
- **Highest Performer:** [Barracuda Incident Response](https://www.g2.com/products/barracuda-incident-response/reviews)
- **Easiest to Use:** [Torq AI SOC Platform](https://www.g2.com/products/torq-ai-soc-platform/reviews)
- **Top Trending:** [n8n](https://www.g2.com/products/n8n/reviews)
- **Best Free Software:** [Tines](https://www.g2.com/products/tines/reviews)


---

**Sponsored**

### Intezer

Intezer automates the entire alert triage process, like an extension of your team handling Tier 1 SOC tasks for every alert at machine-speed. Intezer monitors incoming incidents from endpoint, reported phishing pipelines, or SIEM tools, then autonomously collects evidence, investigates, makes triage decisions, and escalates only the serious threats to your team for human intervention. Power your SOC with artificial intelligence that makes sure every alert is deeply analyzed (including every single artifact like files, URLs, endpoint memory, etc.), detecting malicious code in memory and other evasive threats. Fast set up and integrations with your SOC team&#39;s workflows (EDR, SOAR, SIEM, etc.) means Intezer&#39;s AI can immediately start filtering out false positives, giving you detailed analysis about every threat, and speeding up your incident response time. With Intezer: • Reduce Tier 1 escalation, sending only 4% of alerts on average to your team for immediate action. • Identify up to 97% of false positive alerts without taking any time from your analysts. • Reduce average triage time to 5 minutes or less, while giving your analysts deep context about every alert to prioritize critical treats and respond faster.



[Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&amp;secure%5Bad_slot%5D=category_product_list&amp;secure%5Bcategory_id%5D=2178&amp;secure%5Bchosen_at%5D=2026-07-16T17%3A49%3A16Z&amp;secure%5Bdisplayable_resource_id%5D=1011413&amp;secure%5Bdisplayable_resource_type%5D=Category&amp;secure%5Bmedium%5D=sponsored&amp;secure%5Bplacement_reason%5D=neighbor_category&amp;secure%5Bplacement_resource_ids%5D%5B%5D=1011413&amp;secure%5Bprioritized%5D=false&amp;secure%5Bproduct_id%5D=128448&amp;secure%5Bresource_id%5D=2178&amp;secure%5Bresource_type%5D=Category&amp;secure%5Bsource_type%5D=category_page&amp;secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fsecurity-orchestration-automation-and-response-soar&amp;secure%5Btoken%5D=639d4584d22a29f2beef945686d3f9c75139c23b3e9c8038b0d8036f5dbf9f7e&amp;secure%5Burl%5D=https%3A%2F%2Fintezer.com%2Fforensic-ai-soc-lp%2F%3Futm_source%3DG2%26utm_medium%3Dppc%26utm_campaign%3Dg2paid&amp;secure%5Burl_type%5D=custom_url)

---

## What Are the Top-Rated Security Orchestration, Automation, and Response (SOAR) Software Products in 2026?
### 1. [D3 Security](https://www.g2.com/products/d3-security/reviews)
D3 stands at the forefront of AI-powered security, providing real-time, autonomous SOC solutions that help organizations stay ahead of cyber threats. By merging autonomous investigation and triage with AI-guided remediation, D3 is delivering AI-powered, human-led cyber security solutions. Morpheus is D3 Security’s fully autonomous SOC solution that triages, investigates, and responds to every alert, 24/7. Morpheus covers 100% of your alerts — no exceptions — so your team never has to choose between chasing false positives or risking a breach. It triages 95% of alerts in under two minutes, integrating seamlessly with any SIEM, XDR, or security stack. Unlike traditional SOAR platforms, Morpheus doesn’t need endless playbook tuning; it can build response workflows on the fly, specific to your security stack. The result? Zero alert fatigue, fewer missed threats, and a dramatic boost in SOC efficiency, powered by a data privacy-friendly and SecOps-focused AI model.


**Average Rating:** 4.2/5.0
**Total Reviews:** 64
**How Do G2 Users Rate D3 Security?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 9.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.2/10 (Category avg: 8.5/10)
- **Workflow Automation:** 6.7/10 (Category avg: 8.8/10)

**Who Is the Company Behind D3 Security?**

- **Seller:** [D3 Security Management Systems](https://www.g2.com/sellers/d3-security-management-systems)
- **Year Founded:** 2012
- **HQ Location:** Vancouver, British Columbia
- **Twitter:** @D3Security (1,118 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/342986/ (162 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer Software
- **Company Size:** 49% Enterprise, 41% Mid-Market



#### What Are Recent G2 Reviews of D3 Security?

**"[The best security operation platform](https://www.g2.com/survey_responses/d3-security-review-3110773)"**

**Rating:** 5.0/5.0 stars
*— George K.*

[Read full review](https://www.g2.com/survey_responses/d3-security-review-3110773)

---

**"[Next Generation SOAR Platform](https://www.g2.com/survey_responses/d3-security-review-7793810)"**

**Rating:** 4.5/5.0 stars
*— Kristian T.*

[Read full review](https://www.g2.com/survey_responses/d3-security-review-7793810)

---



### 2. [IBM Cloud Pak for Security](https://www.g2.com/products/ibm-cloud-pak-for-security/reviews)
IBM Cloud Pak for Security is a platform that helps you uncover hidden threats, make more informed risk-based decisions and prioritize your team’s time


**Average Rating:** 4.4/5.0
**Total Reviews:** 9
**How Do G2 Users Rate IBM Cloud Pak for Security?**

- **Automated Remediation:** 8.9/10 (Category avg: 8.6/10)
- **Quality of Support:** 9.2/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.9/10 (Category avg: 8.5/10)
- **Workflow Automation:** 8.9/10 (Category avg: 8.8/10)

**Who Is the Company Behind IBM Cloud Pak for Security?**

- **Seller:** [IBM](https://www.g2.com/sellers/ibm)
- **Year Founded:** 1911
- **HQ Location:** Armonk, New York, United States
- **Twitter:** @IBMSecurity (74,660 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/1009/ (328,202 employees on LinkedIn®)
- **Ownership:** SWX:IBM

**Who Uses This Product?**
- **Company Size:** 40% Enterprise, 30% Mid-Market



#### What Are Recent G2 Reviews of IBM Cloud Pak for Security?

**"[IBM Cloud Pak Review](https://www.g2.com/survey_responses/ibm-cloud-pak-for-security-review-9765692)"**

**Rating:** 4.5/5.0 stars
*— Nitin G.*

[Read full review](https://www.g2.com/survey_responses/ibm-cloud-pak-for-security-review-9765692)

---

**"[Flexible cloud pak](https://www.g2.com/survey_responses/ibm-cloud-pak-for-security-review-9755853)"**

**Rating:** 5.0/5.0 stars
*— Anilkumar R.*

[Read full review](https://www.g2.com/survey_responses/ibm-cloud-pak-for-security-review-9755853)

---


#### What Are G2 Users Discussing About IBM Cloud Pak for Security?

- [What are the 6 current cloud Paks offered by IBM?](https://www.g2.com/discussions/ibm-cloud-pak-for-security-what-are-the-6-current-cloud-paks-offered-by-ibm)
- [What are the features of IBM cloud?](https://www.g2.com/discussions/ibm-cloud-pak-for-security-what-are-the-features-of-ibm-cloud)
- [What is IBM Cloud Pak Security?](https://www.g2.com/discussions/what-is-ibm-cloud-pak-security)

### 3. [Microsoft Security Copilot](https://www.g2.com/products/microsoft-security-copilot/reviews)
Empower your defenders to detect hidden patterns, harden defenses, and respond to incidents faster with generative AI


**Average Rating:** 4.3/5.0
**Total Reviews:** 12
**How Do G2 Users Rate Microsoft Security Copilot?**

- **Quality of Support:** 8.5/10 (Category avg: 9.0/10)
- **Ease of Admin:** 7.8/10 (Category avg: 8.5/10)

**Who Is the Company Behind Microsoft Security Copilot?**

- **Seller:** [Microsoft](https://www.g2.com/sellers/microsoft)
- **Year Founded:** 1975
- **HQ Location:** Redmond, Washington
- **Twitter:** @microsoft (13,091,739 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/microsoft/ (231,632 employees on LinkedIn®)
- **Ownership:** MSFT

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services
- **Company Size:** 75% Enterprise, 17% Mid-Market


#### What Are Microsoft Security Copilot's Pros and Cons?

**Pros:**

- Ease of Use (7 reviews)
- Security (5 reviews)
- Security Protection (5 reviews)
- Threat Detection (5 reviews)
- Automation (4 reviews)

**Cons:**

- Complexity (3 reviews)
- Expensive (3 reviews)
- Difficult Learning Curve (2 reviews)
- False Positives (2 reviews)
- Access Control (1 reviews)


### What Do G2 Reviewers Say About Microsoft Security Copilot?
*AI-generated summary from verified user reviews*

**Pros:**

- Users praise the **ease of use** of Microsoft Security Copilot, benefiting from its seamless integration and intuitive design.
- Users appreciate the **AI-driven threat detection** of Microsoft Security Copilot, enhancing efficiency and response times for security teams.
- Users commend the **AI-driven threat detection** of Microsoft Security Copilot, enhancing security team efficiency and effectiveness.
- Users value the **AI integration for threat detection** , making security operations more efficient and proactive against risks.
- Users value the **automation capabilities** of Microsoft Security Copilot, enhancing efficiency in threat identification and response.

**Cons:**

- Users find the **complexity** of Microsoft Security Copilot challenging, particularly for those unfamiliar with AI-based solutions.
- Users find the product **expensive** , suggesting it should be more cost-effective for broader accessibility.
- Users find the **difficult learning curve** of Microsoft Security Copilot challenging, especially for inexperienced team members.
- Users often face the issue of **false positives** , wasting time and complicating the workflow unnecessarily.
- Users note the **limited access** to Microsoft Security Copilot, restricting its availability for all users.

#### What Are Recent G2 Reviews of Microsoft Security Copilot?

**"[A Critical Analysis of AI in Cybersecurity](https://www.g2.com/survey_responses/microsoft-security-copilot-review-9887878)"**

**Rating:** 4.5/5.0 stars
*— Abhishek N.*

[Read full review](https://www.g2.com/survey_responses/microsoft-security-copilot-review-9887878)

---

**"[Co-pilot :A Dictionary of Guidance](https://www.g2.com/survey_responses/microsoft-security-copilot-review-9999338)"**

**Rating:** 5.0/5.0 stars
*— Viswanadh Gupta T.*

[Read full review](https://www.g2.com/survey_responses/microsoft-security-copilot-review-9999338)

---



### 4. [NetWitness Platform](https://www.g2.com/products/netwitness-platform/reviews)
NetWitness is a comprehensive threat detection, investigation and response platform that combines visibility, analytics, insight, and automation into a single solution. It collects and analyzes data across all capture points (logs, packets, netflow, endpoint and IoT) and computing platforms (physical, virtual and cloud), enriching data with threat intelligence and business context.


**Average Rating:** 3.9/5.0
**Total Reviews:** 23
**How Do G2 Users Rate NetWitness Platform?**

- **Automated Remediation:** 9.2/10 (Category avg: 8.6/10)
- **Quality of Support:** 7.6/10 (Category avg: 9.0/10)
- **Ease of Admin:** 7.4/10 (Category avg: 8.5/10)
- **Workflow Automation:** 9.2/10 (Category avg: 8.8/10)

**Who Is the Company Behind NetWitness Platform?**

- **Seller:** [NetWitness](https://www.g2.com/sellers/netwitness)
- **Year Founded:** 1997
- **HQ Location:** Bedford, MA
- **Twitter:** @Netwitness (1,621 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/netwitness-platform/ (194 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 54% Enterprise, 33% Mid-Market


#### What Are NetWitness Platform's Pros and Cons?

**Pros:**

- Investigation (2 reviews)
- Threat Detection (2 reviews)
- Centralized Management (1 reviews)
- Cybersecurity (1 reviews)
- Features (1 reviews)

**Cons:**

- Complex Implementation (2 reviews)
- Complexity (2 reviews)
- Complex Setup (2 reviews)
- Deployment Difficulties (2 reviews)
- Expertise Required (2 reviews)


### What Do G2 Reviewers Say About NetWitness Platform?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **invaluable forensic investigation capabilities** of the NetWitness Platform, enhancing their threat hunting efforts.
- Users value the **centralized threat detection** capabilities of NetWitness, enhancing efficiency in threat hunting across various data sources.
- Users value the **centralized management** of NetWitness Platform, enhancing efficiency in threat detection across various environments.
- Users value the **centralized threat hunting capabilities** of NetWitness Platform, streamlining their cybersecurity efforts effectively.
- Users appreciate the **packet capture and session replay** capabilities, essential for thorough forensic investigations.

**Cons:**

- Users find the **complex implementation** of NetWitness Platform challenging, requiring significant expertise and leading to installation issues.
- Users find the **initial deployment and upgrades complex** , often needing substantial technical expertise to navigate effectively.
- Users find the **complex setup** of NetWitness Platform challenging, often needing substantial technical expertise for deployment.
- Users face **deployment difficulties** with NetWitness Platform, citing complexity and the need for significant technical expertise.
- Users find the **expertise required** for initial setup and upgrades of NetWitness Platform to be quite challenging.

#### What Are Recent G2 Reviews of NetWitness Platform?

**"[All-in-One Security Console for Centralized Threat Hunting](https://www.g2.com/survey_responses/netwitness-platform-review-12381089)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Information Services*

[Read full review](https://www.g2.com/survey_responses/netwitness-platform-review-12381089)

---

**"[A Powerhouse in Endpoint, Network, and SIEM Integration.](https://www.g2.com/survey_responses/netwitness-platform-review-11524038)"**

**Rating:** 4.0/5.0 stars
*— pushpendra Y.*

[Read full review](https://www.g2.com/survey_responses/netwitness-platform-review-11524038)

---


#### What Are G2 Users Discussing About NetWitness Platform?

- [What is one of the biggest differentiators for RSA NetWitness platform?](https://www.g2.com/discussions/what-is-one-of-the-biggest-differentiators-for-rsa-netwitness-platform)
- [What types of data can the RSA NetWitness platform capture and process?](https://www.g2.com/discussions/what-types-of-data-can-the-rsa-netwitness-platform-capture-and-process)
- [What is NetWitness used for?](https://www.g2.com/discussions/what-is-netwitness-used-for) - 1 comment
- [What does RSA NetWitness do?](https://www.g2.com/discussions/what-does-rsa-netwitness-do)

### 5. [Exaforce](https://www.g2.com/products/exaforce/reviews)
At Exaforce, we are on a mission to 10x the productivity and efficacy of security and operations (SOC) teams using our transformative multi-model AI engine. Our Agentic SOC Platform combines AI agents (“Exabots”) with advanced data exploration to deliver real-time insights, proactive detection and response, in-depth investigations, and automated workflows. Backed by Khosla Ventures, Mayfield, Thomvest Ventures, Touring Capital, and others, Exaforce helps SOC teams respond to threats and breaches faster, with higher precision, greater consistency, and at lower total costs—redefining how SOC teams function.


**Average Rating:** 4.9/5.0
**Total Reviews:** 7
**How Do G2 Users Rate Exaforce?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 10.0/10 (Category avg: 8.5/10)
- **Workflow Automation:** 10.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind Exaforce?**

- **Seller:** [Exaforce](https://www.g2.com/sellers/exaforce)
- **Company Website:** https://www.exaforce.com
- **Year Founded:** 2023
- **HQ Location:** San Jose, CA
- **Twitter:** @exaforceAI (134 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/exaforce (60 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 57% Mid-Market, 29% Enterprise


#### What Are Exaforce's Pros and Cons?

**Pros:**

- Security (3 reviews)
- Support (3 reviews)
- Alerting System (2 reviews)
- Customer Support (2 reviews)
- Ease of Use (2 reviews)

**Cons:**

- Query Issues (1 reviews)
- Slow Performance (1 reviews)
- System Limitations (1 reviews)


### What Do G2 Reviewers Say About Exaforce?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **enhanced security operations** of Exaforce, benefiting from efficient AI and human collaboration.
- Users commend Exaforce&#39;s **fantastic customer support** , noting their responsiveness and collaboration on new features.
- Users appreciate the **efficient alerting system** of Exaforce, enabling focused investigations and streamlined workflows.
- Users value the **fantastic customer support** of Exaforce, which greatly enhances their troubleshooting and feature request processes.
- Users praise the **ease of use** of Exaforce, appreciating fast investigations and minimal noise in alerts.

**Cons:**

- Users often face **query issues** due to slow interface loading and failures with complex datasets.
- Users experience **slow performance** with Exaforce, particularly with loading interfaces and handling complex datasets.
- Users experience **system limitations** with Exaforce, reporting slow loading times and failures with complex queries and large datasets.

#### What Are Recent G2 Reviews of Exaforce?

**"[Exaforce Cuts Security Alert Noise and Speeds Up Remediation](https://www.g2.com/survey_responses/exaforce-review-12644503)"**

**Rating:** 5.0/5.0 stars
*— Monde H.*

[Read full review](https://www.g2.com/survey_responses/exaforce-review-12644503)

---

**"[Collaborative, AI-Powered Security Operations](https://www.g2.com/survey_responses/exaforce-review-12407665)"**

**Rating:** 5.0/5.0 stars
*— Patrick M.*

[Read full review](https://www.g2.com/survey_responses/exaforce-review-12407665)

---



### 6. [Trellix Helix](https://www.g2.com/products/trellix-helix/reviews)
Trellix Helix integrates your security tools and augments them with next-generation security information and event management (SIEM), orchestration, and threat intelligence capabilities to capture the untapped potential of security investments.


**Average Rating:** 4.3/5.0
**Total Reviews:** 11
**How Do G2 Users Rate Trellix Helix?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.5/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.9/10 (Category avg: 8.5/10)
- **Workflow Automation:** 8.3/10 (Category avg: 8.8/10)

**Who Is the Company Behind Trellix Helix?**

- **Seller:** [Skyhigh Security](https://www.g2.com/sellers/skyhigh-security-2026-07-02)
- **Year Founded:** 2004
- **HQ Location:** Plano, TX
- **Twitter:** @Trellix (241,168 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/skyhighsecurity/posts/?feedView=all (751 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 64% Enterprise, 18% Mid-Market


#### What Are Trellix Helix's Pros and Cons?

**Pros:**

- Artificial Intelligence (1 reviews)
- Automated Response (1 reviews)
- Automation (1 reviews)
- Cloud Services (1 reviews)
- Cybersecurity (1 reviews)



### What Do G2 Reviewers Say About Trellix Helix?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **real-time threat detection** of Trellix Helix, enhancing security with automated AI/ML responses.
- Users appreciate the **automated response capabilities** of Trellix Helix, enhancing their threat management with AI/ML efficiency.
- Users appreciate the **automation capabilities** of Trellix Helix, enhancing real-time threat response and simplifying security management.
- Users appreciate the **flexible and scalable architecture** of Trellix Helix, enabling seamless integration and easy implementation.
- Users appreciate the **real-time threat detection** of Trellix Helix, enhancing security and simplifying integration processes.


#### What Are Recent G2 Reviews of Trellix Helix?

**"[Fireeye Helix &quot;New Generation SIEM&quot;](https://www.g2.com/survey_responses/trellix-helix-review-9347343)"**

**Rating:** 4.5/5.0 stars
*— Rahul R.*

[Read full review](https://www.g2.com/survey_responses/trellix-helix-review-9347343)

---

**"[An effective Unified SOC !!!](https://www.g2.com/survey_responses/trellix-helix-review-10283899)"**

**Rating:** 5.0/5.0 stars
*— Ankit  A.*

[Read full review](https://www.g2.com/survey_responses/trellix-helix-review-10283899)

---



### 7. [DNIF HYPERCLOUD](https://www.g2.com/products/dnif-hypercloud/reviews)
DNIF HYPERCLOUD is a cloud native platform that brings the functionality of SIEM, UEBA and SOAR into a single continuous workflow to solve cybersecurity challenges at scale. DNIF HYPERCLOUD is the flagship SaaS platform from NETMONASTERY that delivers key detection functionality using big data analytics and machine learning. NETMONASTERY aims to deliver a platform that helps customers in ingesting machine data and automatically identify anomalies in these data streams using machine learning and outlier detection algorithms. The objective is to make it easy for untrained engineers and analysts to use the platform and extract benefit reliably and efficiently.


**Average Rating:** 4.2/5.0
**Total Reviews:** 10
**How Do G2 Users Rate DNIF HYPERCLOUD?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.9/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.9/10 (Category avg: 8.5/10)
- **Workflow Automation:** 10.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind DNIF HYPERCLOUD?**

- **Seller:** [DNIF](https://www.g2.com/sellers/dnif)
- **Year Founded:** 2002
- **HQ Location:** Mountain View, California
- **LinkedIn® Page:** https://www.linkedin.com/company/dnif/ (59 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 45% Mid-Market, 36% Enterprise



#### What Are Recent G2 Reviews of DNIF HYPERCLOUD?

**"[Excellent security system](https://www.g2.com/survey_responses/dnif-hypercloud-review-6936355)"**

**Rating:** 5.0/5.0 stars
*— Yairlyn F.*

[Read full review](https://www.g2.com/survey_responses/dnif-hypercloud-review-6936355)

---

**"[Intuitive Cyber Threats Detection Platform.](https://www.g2.com/survey_responses/dnif-hypercloud-review-7014258)"**

**Rating:** 4.5/5.0 stars
*— Veronica D.*

[Read full review](https://www.g2.com/survey_responses/dnif-hypercloud-review-7014258)

---



### 8. [Fixure](https://www.g2.com/products/fixure/reviews)
Security tools don’t fail because they miss things. They fail because none of them can explain what to do next. Fixure is the missing intelligence layer above the security stack. We don’t scan, alert, or prioritize findings. We build a system-level model of reality that reconciles conflicting tool opinions and reasons about consequences before action is taken. In a world of thousands of “critical” issues, Fixure explains which decisions actually matter. Not by severity. Not by volume. By understanding impact, blast radius, and outcomes across the entire system. That’s why Fixure isn’t another security platform—it’s the layer that finally makes security decisions make sense.


**Average Rating:** 5.0/5.0
**Total Reviews:** 6

**Who Is the Company Behind Fixure?**

- **Seller:** [Fixure](https://www.g2.com/sellers/fixure)
- **Year Founded:** 2025
- **HQ Location:** N/A
- **LinkedIn® Page:** https://www.linkedin.com/company/fixure/ (1 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 67% Mid-Market, 33% Small-Business



#### What Are Recent G2 Reviews of Fixure?

**"[Pioneering Security Solution That Cuts Through Noise](https://www.g2.com/survey_responses/fixure-review-12601855)"**

**Rating:** 5.0/5.0 stars
*— Jessica S.*

[Read full review](https://www.g2.com/survey_responses/fixure-review-12601855)

---

**"[Comprehensive Security with Excellent Reporting](https://www.g2.com/survey_responses/fixure-review-12706950)"**

**Rating:** 5.0/5.0 stars
*— Alexis R.*

[Read full review](https://www.g2.com/survey_responses/fixure-review-12706950)

---



### 9. [Securonix Security Operations and Analytics Platform](https://www.g2.com/products/securonix-security-operations-and-analytics-platform/reviews)
Securonix is working to radically transform all areas of data security with actionable security intelligence.


**Average Rating:** 4.0/5.0
**Total Reviews:** 14
**How Do G2 Users Rate Securonix Security Operations and Analytics Platform?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.3/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.3/10 (Category avg: 8.5/10)
- **Workflow Automation:** 9.2/10 (Category avg: 8.8/10)

**Who Is the Company Behind Securonix Security Operations and Analytics Platform?**

- **Seller:** [Securonix](https://www.g2.com/sellers/securonix)
- **Year Founded:** 2008
- **HQ Location:** Addison, US
- **Twitter:** @Securonix (4,275 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/759889 (667 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services
- **Company Size:** 50% Enterprise, 36% Small-Business


#### What Are Securonix Security Operations and Analytics Platform's Pros and Cons?

**Pros:**

- Alerting (1 reviews)
- Alerting System (1 reviews)
- Alert Notifications (1 reviews)
- Alerts (1 reviews)
- Analysis (1 reviews)

**Cons:**

- Complex Setup (1 reviews)
- Information Deficiency (1 reviews)
- Insufficient Detail (1 reviews)
- Integration Issues (1 reviews)
- Limited Features (1 reviews)


### What Do G2 Reviewers Say About Securonix Security Operations and Analytics Platform?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **automated correlation of alerts** , which simplifies analysis and minimizes false positives effectively.
- Users value the **alert correlation** feature, making analysis easier and significantly reducing false positives.
- Users value the **automated alert correlation** in Securonix, enhancing analysis and minimizing false positives effortlessly.
- Users value the **automated alert correlation** , making analysis straightforward and minimizing false positives for efficient monitoring.
- Users value the **automated alert correlation** in Securonix, which simplifies analysis and minimizes false positives.

**Cons:**

- Users find the **complex setup** of Securonix challenging, hindering analysis and troubleshooting when errors arise.
- Users find **information deficiency** with Securonix, facing challenges in analysis, integration, and troubleshooting errors effectively.
- Users find the **insufficient detail** in Securonix limits their analysis and complicates troubleshooting integration errors.
- Users struggle with **integration issues** in Securonix, finding it difficult to analyze data and troubleshoot errors.
- Users find the **limited features** of Securonix restrict analysis, complicating integration and troubleshooting processes.

#### What Are Recent G2 Reviews of Securonix Security Operations and Analytics Platform?

**"[Modern SIEM Tool with good features and Support](https://www.g2.com/survey_responses/securonix-security-operations-and-analytics-platform-review-9514109)"**

**Rating:** 5.0/5.0 stars
*— Pritam M.*

[Read full review](https://www.g2.com/survey_responses/securonix-security-operations-and-analytics-platform-review-9514109)

---

**"[Correlated Alerts Made Easy, with Fewer False Positives](https://www.g2.com/survey_responses/securonix-security-operations-and-analytics-platform-review-12366950)"**

**Rating:** 5.0/5.0 stars
*— Saikumar M.*

[Read full review](https://www.g2.com/survey_responses/securonix-security-operations-and-analytics-platform-review-12366950)

---


#### What Are G2 Users Discussing About Securonix Security Operations and Analytics Platform?

- [What is Securonix Security Operations and Analytics Platform used for?](https://www.g2.com/discussions/what-is-securonix-security-operations-and-analytics-platform-used-for) - 1 comment, 1 upvote

### 10. [InsightConnect](https://www.g2.com/products/insightconnect/reviews)
Orchestration and automation to accelerate your teams and tools


**Average Rating:** 4.0/5.0
**Total Reviews:** 5
**How Do G2 Users Rate InsightConnect?**

- **Automated Remediation:** 3.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 3.9/10 (Category avg: 9.0/10)
- **Ease of Admin:** 2.5/10 (Category avg: 8.5/10)
- **Workflow Automation:** 7.5/10 (Category avg: 8.8/10)

**Who Is the Company Behind InsightConnect?**

- **Seller:** [Rapid7](https://www.g2.com/sellers/rapid7)
- **Year Founded:** 2000
- **HQ Location:** Boston, MA
- **Twitter:** @rapid7 (124,405 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/39624/ (3,274 employees on LinkedIn®)
- **Ownership:** NASDAQ:RPD

**Who Uses This Product?**
- **Company Size:** 80% Enterprise, 20% Mid-Market



#### What Are Recent G2 Reviews of InsightConnect?

**"[Great Fit for a Large Organization](https://www.g2.com/survey_responses/insightconnect-review-6544504)"**

**Rating:** 4.5/5.0 stars
*— Robert M.*

[Read full review](https://www.g2.com/survey_responses/insightconnect-review-6544504)

---

**"[Automation at its best !! Simple And Powerful Automation Platform.](https://www.g2.com/survey_responses/insightconnect-review-6734537)"**

**Rating:** 4.5/5.0 stars
*— Aditya M.*

[Read full review](https://www.g2.com/survey_responses/insightconnect-review-6734537)

---


#### What Are G2 Users Discussing About InsightConnect?

- [What is InsightConnect used for?](https://www.g2.com/discussions/what-is-insightconnect-used-for)

### 11. [ReliaQuest GreyMatter](https://www.g2.com/products/reliaquest-greymatter/reviews)
ReliaQuest’s agentic AI security operations platform, GreyMatter, allows security teams to detect threats at the source, contain them in under 5 minutes, and eliminate Tier 1 and Tier 2 work for faster investigation and response. GreyMatter orchestrates 6 agentic AI personas with 200+ agent skills and 400+ AI tools to exponentially scale security operations and help organizations predict what&#39;s next.


**Average Rating:** 4.5/5.0
**Total Reviews:** 13
**How Do G2 Users Rate ReliaQuest GreyMatter?**

- **Automated Remediation:** 6.7/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.9/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.8/10 (Category avg: 8.5/10)
- **Workflow Automation:** 6.7/10 (Category avg: 8.8/10)

**Who Is the Company Behind ReliaQuest GreyMatter?**

- **Seller:** [ReliaQuest](https://www.g2.com/sellers/reliaquest)
- **Company Website:** https://www.ReliaQuest.com
- **Year Founded:** 2007
- **HQ Location:** Tampa, Florida, United States
- **Twitter:** @ReliaQuest (2,577 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/reliaquest/ (1,066 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 38% Mid-Market, 31% Enterprise


#### What Are ReliaQuest GreyMatter's Pros and Cons?

**Pros:**

- Features (8 reviews)
- Centralized Management (7 reviews)
- Customer Support (7 reviews)
- Ease of Use (7 reviews)
- Easy Integrations (6 reviews)

**Cons:**

- UX Improvement (3 reviews)
- Complexity (2 reviews)
- Inefficient Alert System (2 reviews)
- Learning Curve (2 reviews)
- Login Issues (2 reviews)


### What Do G2 Reviewers Say About ReliaQuest GreyMatter?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **exceptional visibility and seamless integration** of ReliaQuest GreyMatter, enhancing security operations effectively.
- Users value the **centralized management** of ReliaQuest GreyMatter, enhancing visibility and streamlining security operations across platforms.
- Users praise the **exceptional customer support** from ReliaQuest GreyMatter, enhancing the overall user experience significantly.
- Users find ReliaQuest GreyMatter incredibly **easy to use** , streamlining security operations with seamless integration and clear incident analysis.
- Users value the **seamless integrations** of ReliaQuest GreyMatter, enhancing their overall security operations effortlessly.

**Cons:**

- Users experience **alert delays and clunky UI** in ReliaQuest GreyMatter, impacting the overall user experience.
- Users find the **complexity of configurations** challenging, requiring additional time to fine-tune automated rules effectively.
- Users experience **inefficient alert systems** with delays, duplicates, and slow report loading, requiring time to fine-tune settings.
- Users face a challenging **learning curve** with advanced automation workflows, though support helps make it manageable.
- Users experience **login issues** with the ReliaQuest GreyMatter app, especially regarding a clunky sign-in process on Android.

#### What Are Recent G2 Reviews of ReliaQuest GreyMatter?

**"[Effective Automation for MSSP with GreyMatter](https://www.g2.com/survey_responses/reliaquest-greymatter-review-12596289)"**

**Rating:** 4.5/5.0 stars
*— Pedro G.*

[Read full review](https://www.g2.com/survey_responses/reliaquest-greymatter-review-12596289)

---

**"[Saves Time with Seamless Integrations](https://www.g2.com/survey_responses/reliaquest-greymatter-review-11947996)"**

**Rating:** 4.5/5.0 stars
*— Ben B.*

[Read full review](https://www.g2.com/survey_responses/reliaquest-greymatter-review-11947996)

---



### 12. [FortiSOAR](https://www.g2.com/products/fortisoar/reviews)
FortiSOAR is a comprehensive Security Orchestration, Automation, and Response (SOAR platform designed to enhance the efficiency and effectiveness of security operations centers (SOCs. By centralizing incident management and automating routine analyst tasks, FortiSOAR enables IT and operational technology (OT security teams to swiftly detect, investigate, and respond to cyber threats. The platform integrates seamlessly with a wide array of security tools, offering extensive pre-built playbooks and flexible deployment options to meet diverse organizational needs. Key Features and Functionality: - Centralized Incident Management: Unifies alert triage, enrichment, investigation, collaboration, and response actions across IT and OT environments. - Extensive Integrations: Supports over 500 multi-vendor integrations and provides more than 800 pre-built playbooks to enhance operational efficiency. - AI-Driven Security Operations: Incorporates FortiAI and a machine learning-based recommendation engine to guide and automate analyst activities, including playbook creation and incident prioritization. - Built-In Threat Intelligence: Leverages FortiGuard Labs&#39; global intelligence and public sources to enrich investigations and inform proactive security measures. - No/Low-Code Playbook Creation: Offers a patented design experience with visual drag-and-drop and rapid development modes for efficient playbook creation. - Flexible Deployment Options: Available as SaaS, on-premises, public cloud hosting, or through trusted Managed Security Service Providers (MSSPs, ensuring adaptability to various organizational requirements. Primary Value and Problem Solved: FortiSOAR addresses the challenges faced by security teams overwhelmed with numerous tools, excessive alerts, and manual, repetitive processes that hinder response times. By centralizing, standardizing, and automating security operations, FortiSOAR enforces best practices and allows analysts to focus on critical tasks, thereby improving overall security posture and operational efficiency. Its AI-driven capabilities and extensive integrations enable organizations to respond to threats more rapidly and effectively, reducing mean time to response (MTTR and enhancing productivity.


**Average Rating:** 4.9/5.0
**Total Reviews:** 4
**How Do G2 Users Rate FortiSOAR?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.9/10 (Category avg: 9.0/10)
- **Ease of Admin:** 7.5/10 (Category avg: 8.5/10)
- **Workflow Automation:** 10.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind FortiSOAR?**

- **Seller:** [Fortinet](https://www.g2.com/sellers/fortinet)
- **Year Founded:** 2000
- **HQ Location:** Sunnyvale, CA
- **Twitter:** @Fortinet (151,422 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/6460/ (16,279 employees on LinkedIn®)
- **Ownership:** NASDAQ: FTNT

**Who Uses This Product?**
- **Company Size:** 75% Mid-Market, 25% Small-Business


#### What Are FortiSOAR's Pros and Cons?

**Pros:**

- Integrations (1 reviews)
- Security (1 reviews)

**Cons:**

- Complex Coding (1 reviews)


### What Do G2 Reviewers Say About FortiSOAR?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **seamless integrations** of FortiSOAR with solutions like Splunk Enterprise Security for enhanced security management.
- Users benefit from the **enhanced security** features of FortiSOAR, effectively preventing cyber attacks and integrating seamlessly.

**Cons:**

- Users find the **complex coding** requirements of FortiSOAR to be challenging and not user-friendly.

#### What Are Recent G2 Reviews of FortiSOAR?

**"[ForiSOAR Review](https://www.g2.com/survey_responses/fortisoar-review-9841178)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Computer &amp; Network Security*

[Read full review](https://www.g2.com/survey_responses/fortisoar-review-9841178)

---

**"[Modular Soar Solution](https://www.g2.com/survey_responses/fortisoar-review-8199362)"**

**Rating:** 4.5/5.0 stars
*— Esat Yasar C.*

[Read full review](https://www.g2.com/survey_responses/fortisoar-review-8199362)

---


#### What Are G2 Users Discussing About FortiSOAR?

- [What is FortiSOAR used for?](https://www.g2.com/discussions/what-is-fortisoar-used-for)

### 13. [ORNA](https://www.g2.com/products/orna-orna/reviews)
ORNA is an end-to-end incident response automation platform for lean teams in midsize businesses that helps streamline or automate detection, response, and even prevention of cyberattacks on the organization&#39;s assets, all in a single tool with live 24/7 specialist support. The platform monitors cloud, on-premises, and hybrid assets (such as servers, network devices, workstations, IoT devices, and more) the organization is looking to protect around the clock, but also brings together overarching cyber incident response across all business functions, such as legal, HR, communications, and others; as well as automates evidence collection, communications, vulnerability management, and more.


**Average Rating:** 4.7/5.0
**Total Reviews:** 7
**How Do G2 Users Rate ORNA?**

- **Automated Remediation:** 6.7/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 10.0/10 (Category avg: 8.5/10)
- **Workflow Automation:** 6.7/10 (Category avg: 8.8/10)

**Who Is the Company Behind ORNA?**

- **Seller:** [ORNA](https://www.g2.com/sellers/orna)
- **Year Founded:** 2021
- **HQ Location:** Toronto, CA
- **LinkedIn® Page:** https://www.linkedin.com/company/orna-inc/ (42 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 71% Small-Business, 14% Mid-Market


#### What Are ORNA's Pros and Cons?

**Pros:**

- Automation Ease (1 reviews)
- Customer Support (1 reviews)
- Detection Accuracy (1 reviews)
- Ease of Use (1 reviews)
- Email Security (1 reviews)



### What Do G2 Reviewers Say About ORNA?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **automation ease** of ORNA, simplifying integrations and improving incident response efficiency.
- Users value the **exceptional customer support** from ORNA, appreciating timely answers and openness to feedback.
- Users commend ORNA&#39;s **detection accuracy** , enhancing endpoint visibility and incident correlation for improved security management.
- Users appreciate the **ease of use** for creating tags and uploading devices manually on ORNA.
- Users commend ORNA for its **helpful support team and seamless integrations** , enhancing their overall experience with the product.


#### What Are Recent G2 Reviews of ORNA?

**"[ORNA Cyber Incident Response Platform](https://www.g2.com/survey_responses/orna-review-10406528)"**

**Rating:** 4.5/5.0 stars
*— Robert M.*

[Read full review](https://www.g2.com/survey_responses/orna-review-10406528)

---

**"[User interface is Perfect](https://www.g2.com/survey_responses/orna-review-10827471)"**

**Rating:** 4.5/5.0 stars
*— Laia G.*

[Read full review](https://www.g2.com/survey_responses/orna-review-10827471)

---



### 14. [autobotAI](https://www.g2.com/products/autobotai/reviews)
autobotAI is a agentic security automation platform that streamlines and secures Security and IT operations. Leveraging generative AI, it automates workflows across multi-cloud environments, integrating seamlessly with security and observability tools, and enhancing operational efficiency with no-code, low-code, and full-code flexibility.


**Average Rating:** 5.0/5.0
**Total Reviews:** 3
**How Do G2 Users Rate autobotAI?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Workflow Automation:** 9.2/10 (Category avg: 8.8/10)

**Who Is the Company Behind autobotAI?**

- **Seller:** [FusionGate](https://www.g2.com/sellers/fusiongate)
- **Year Founded:** 2018
- **HQ Location:** Bengaluru South, IN
- **LinkedIn® Page:** https://www.linkedin.com/company/shunyeka (12 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 67% Small-Business, 33% Mid-Market


#### What Are autobotAI's Pros and Cons?

**Pros:**

- Automation (3 reviews)
- No Coding (2 reviews)
- Workflow Management (2 reviews)
- Automation Ease (1 reviews)
- Customer Support (1 reviews)

**Cons:**

- Limitations (1 reviews)
- Slow Performance (1 reviews)


### What Do G2 Reviewers Say About autobotAI?
*AI-generated summary from verified user reviews*

**Pros:**

- Users love the **ease of automation** with autobotAI, appreciating its intuitive no-code approach that saves significant time.
- Users love the **no coding flexibility** of autobotAI, making automation intuitive and saving significant time.
- Users appreciate the **intuitive automation workflow management** of autobotAI, enhancing efficiency in ITOps and security compliance.
- Users appreciate the **ease of automation** with autobotAI, enhancing efficiency in day-to-day ITOps tasks.
- Users value the **responsive and technical customer support** provided by autobotAI, enhancing their overall experience.

**Cons:**

- Users find the **insight feature lacking filter options** , which limits visibility into compliance posture effectively.
- Users experience **slow performance** when using the NoCode node, but improvements are expected in future updates.

#### What Are Recent G2 Reviews of autobotAI?

**"[Automated vulnerability Patching with Generative AI](https://www.g2.com/survey_responses/autobotai-review-11101484)"**

**Rating:** 5.0/5.0 stars
*— Anmol J.*

[Read full review](https://www.g2.com/survey_responses/autobotai-review-11101484)

---

**"[Agentic Workflows and MCP, it&#39;s a robust platform for automating DevOps, CloudOps, and SecOps](https://www.g2.com/survey_responses/autobotai-review-11101411)"**

**Rating:** 5.0/5.0 stars
*— Satish S.*

[Read full review](https://www.g2.com/survey_responses/autobotai-review-11101411)

---



### 15. [DTonomy](https://www.g2.com/products/dtonomy/reviews)
DTonomy’s AI Assisted Incident Response (AIR) platform manages alerts from multiple security tools and infrastructure and automates manual time-consuming and repetitive tasks. AIR is powered by DTonomy’s adaptive learning engine which continuously learns and provides contextual insights that are not easily discoverable. The platform uses the insights to make relevant recommendations and automated workflows to guide security teams through steps and procedures. DTonomy’s AIR platform resolves incidents up to 10 times quick which leads to decreased downtime and reduced alert fatigue for staff.


**Average Rating:** 5.0/5.0
**Total Reviews:** 3
**How Do G2 Users Rate DTonomy?**

- **Automated Remediation:** 9.4/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 6.7/10 (Category avg: 8.5/10)
- **Workflow Automation:** 9.4/10 (Category avg: 8.8/10)

**Who Is the Company Behind DTonomy?**

- **Seller:** [DTonomy](https://www.g2.com/sellers/dtonomy)
- **Year Founded:** 2018
- **HQ Location:** Cambridge, US
- **Twitter:** @Peter_DTonomy (328 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/dtonomy/ (2 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 67% Enterprise, 33% Small-Business



#### What Are Recent G2 Reviews of DTonomy?

**"[A more efficent approach to SOAR](https://www.g2.com/survey_responses/dtonomy-review-9101067)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Legal Services*

[Read full review](https://www.g2.com/survey_responses/dtonomy-review-9101067)

---

**"[Flexible automation environment that keeps getting better](https://www.g2.com/survey_responses/dtonomy-review-4381414)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Higher Education*

[Read full review](https://www.g2.com/survey_responses/dtonomy-review-4381414)

---


#### What Are G2 Users Discussing About DTonomy?

- [What is DTonomy used for?](https://www.g2.com/discussions/what-is-dtonomy-used-for)

### 16. [NOVA](https://www.g2.com/products/nmt-security-nova/reviews)
NOVA AI is NMT Security&#39;s all-in-one cybersecurity platform. Based on what&#39;s described across the website: What it does: 1. Unifies 6 security functions into one dashboard: EASM (attack surface monitoring), TPRM (vendor risk), GRC (compliance automation), VAPT (pen testing), vCISO (expert advisory), and 24/7 SOC (monitoring) 2. Powered by the DRIM AI engine - which quantifies every cyber risk in financial terms (dollar impact) 3. Auto-discovers assets and begins scanning with zero-config connectors 4. Ingests data from 80+ existing security tools and correlates it into unified intelligence Who it&#39;s for: 1. SMBs, NBFCs, fintechs, SaaS startups, and regulated entities 2. Companies that would otherwise need 5+ separate security tools Key differentiators: 1. Replaces multiple point solutions (EASM + TPRM + GRC + VAPT + vCISO + SOC) 2. Risk quantification in financial terms (not just severity scores) 3. SOC 2 Type II certified, ISO 27001 compliant 4. Live in under 5 minutes 5. Supports 12+ compliance frameworks (RBI, SEBI, SOC 2, ISO 27001, DPDP, GDPR, HIPAA, PCI DSS, NIST CSF)


**Average Rating:** 4.8/5.0
**Total Reviews:** 3
**How Do G2 Users Rate NOVA?**

- **Automated Remediation:** 6.7/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 9.4/10 (Category avg: 8.5/10)
- **Workflow Automation:** 8.3/10 (Category avg: 8.8/10)

**Who Is the Company Behind NOVA?**

- **Seller:** [NMT Security](https://www.g2.com/sellers/nmt-security)
- **HQ Location:** N/A
- **LinkedIn® Page:** https://www.linkedin.com/company/No-Linkedin-Presence-Added-Intentionally-By-DataOps (1 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 67% Small-Business, 33% Enterprise


#### What Are NOVA's Pros and Cons?

**Pros:**

- Features (1 reviews)
- Real-time Monitoring (1 reviews)
- Security (1 reviews)



### What Do G2 Reviewers Say About NOVA?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **combination of compliance support and real-time security insights** , enhancing brand risk visibility and reassurance.
- Users value the **real-time security insights** from NOVA, enhancing compliance support and brand risk visibility effectively.
- Users appreciate the **real-time security insights** provided by NOVA, enhancing their compliance and brand risk management.


#### What Are Recent G2 Reviews of NOVA?

**"[AI CISO &amp; On-the-Go Compliance—A True Game Changer](https://www.g2.com/survey_responses/nova-review-12457571)"**

**Rating:** 5.0/5.0 stars
*— Charandeep  M.*

[Read full review](https://www.g2.com/survey_responses/nova-review-12457571)

---

**"[Outstanding ISO 27001 Guidance—Certified in Under a Month at a Fair Price](https://www.g2.com/survey_responses/nova-review-12474670)"**

**Rating:** 4.5/5.0 stars
*— Linto T.*

[Read full review](https://www.g2.com/survey_responses/nova-review-12474670)

---



### 17. [Security Orchestration, Automation &amp; Response](https://www.g2.com/products/security-orchestration-automation-response/reviews)
A universal, security orchestration gateway for executing on-demand or event-triggered tasks across deployment environments at machine speeds.


**Average Rating:** 4.3/5.0
**Total Reviews:** 2
**How Do G2 Users Rate Security Orchestration, Automation &amp; Response?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.3/10 (Category avg: 9.0/10)
- **Workflow Automation:** 8.3/10 (Category avg: 8.8/10)

**Who Is the Company Behind Security Orchestration, Automation &amp; Response?**

- **Seller:** [Cyware](https://www.g2.com/sellers/cyware)
- **Year Founded:** 2016
- **HQ Location:** Jersey City, New Jersey, United States
- **Twitter:** @CywareCo (4,468 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/cyware/ (253 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Enterprise



#### What Are Recent G2 Reviews of Security Orchestration, Automation &amp; Response?

**"[As SOAR used for both SIEM and CTIX](https://www.g2.com/survey_responses/security-orchestration-automation-response-review-8912000)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Banking*

[Read full review](https://www.g2.com/survey_responses/security-orchestration-automation-response-review-8912000)

---



### 18. [Devo](https://www.g2.com/products/devo/reviews)
Devo unlocks the full value of machine data for the world’s most instrumented enterprises by putting more data to work now. With Devo, IT executives finally realize the transformational promise of machine data to drive breakthrough projects that move the entire business forward. Born for today’s fully instrumented world, the Devo platform is purpose-built for both the sheer volume of data generated today, and the crushing demands of automation and the millions of algorithms that need to consume machine data. Our unique No-Compromise Architecture frees IT from the painful constraints of existing enterprise log management (ELM) systems, ingesting petabytes daily with blistering speed with no re-architecting required, even as data volumes explode. All machine data is unified, hot, and ready to use across multiple teams and use cases, from the moment of ingestion, for as long as you want to retain it – no limits. Only Devo combines real-time streams with historical data for fully contextual analytics, delivering 10x faster response times for tens of thousands of simultaneous queries. Devo powers the world’s most instrumented enterprises – Telefonica, Caixa Bank, Panda Security and 1000+ more worldwide – all realizing game-changing economics and compounding value from their machine data. Visit www.devo.com to learn more.


**Average Rating:** 4.3/5.0
**Total Reviews:** 5
**How Do G2 Users Rate Devo?**

- **Quality of Support:** 8.3/10 (Category avg: 9.0/10)

**Who Is the Company Behind Devo?**

- **Seller:** [Devo](https://www.g2.com/sellers/devo)
- **Year Founded:** 2011
- **HQ Location:** Boston, Massachusetts, United States
- **Twitter:** @devo_Inc (6,147 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/devoinc/ (614 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 40% Mid-Market, 40% Small-Business



#### What Are Recent G2 Reviews of Devo?

**"[This is a great log management application, thats very helpfull for me  in this busy world,](https://www.g2.com/survey_responses/devo-review-5403587)"**

**Rating:** 4.0/5.0 stars
*— Bibin A.*

[Read full review](https://www.g2.com/survey_responses/devo-review-5403587)

---

**"[Devo review](https://www.g2.com/survey_responses/devo-review-6576255)"**

**Rating:** 5.0/5.0 stars
*— SAJID S.*

[Read full review](https://www.g2.com/survey_responses/devo-review-6576255)

---


#### What Are G2 Users Discussing About Devo?

- [What is Devo used for?](https://www.g2.com/discussions/what-is-devo-used-for)

### 19. [Evolve Security Automation](https://www.g2.com/products/evolve-security-automation/reviews)
Evolve Security Automation is a modern approach to maximize your security budgets to achieve on-demand security capabilities with flexible pay-as-you-go pricing models. Automate your penetration testing and incident response, monitor for compromised accounts across thousands of security breaches, and orchestrate security infrastructure with automated cyber threat intelligence integration.


**Average Rating:** 5.0/5.0
**Total Reviews:** 1
**How Do G2 Users Rate Evolve Security Automation?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 10.0/10 (Category avg: 8.5/10)
- **Workflow Automation:** 8.3/10 (Category avg: 8.8/10)

**Who Is the Company Behind Evolve Security Automation?**

- **Seller:** [Threat Intelligence](https://www.g2.com/sellers/threat-intelligence)
- **HQ Location:** Sydney, AU
- **LinkedIn® Page:** https://www.linkedin.com/company/threat-intelligence-pty-ltd/ (23 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Mid-Market



#### What Are Recent G2 Reviews of Evolve Security Automation?

**"[Evolve Secure service](https://www.g2.com/survey_responses/evolve-security-automation-review-8724617)"**

**Rating:** 5.0/5.0 stars
*— Vishnu S.*

[Read full review](https://www.g2.com/survey_responses/evolve-security-automation-review-8724617)

---



### 20. [Forescout Platform](https://www.g2.com/products/forescout-platform/reviews)
As AI-driven vulnerability and exploitation accelerate attack velocity to machine speed, Forescout is a foundational cyber defense layer that allows organizations to segment and isolate compromised systems, block lateral movement, and automate response across IT, OT, IoT, and IoMT environments. The Forescout Vistaro™ platform, powered by agentic AI and enhanced with Vedere Labs threat intelligence, delivers a Universal Zero Trust Network Access (UZTNA) architecture that integrates seamlessly with 180+ security and IT products. With Forescout Vistaro, organizations get comprehensive inventory and classification of both managed and unmanaged assets, continuous exposure management, and real-time protection including dynamic network segmentation and automated threat response.


**Average Rating:** 4.5/5.0
**Total Reviews:** 16
**How Do G2 Users Rate Forescout Platform?**

- **Quality of Support:** 8.2/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.1/10 (Category avg: 8.5/10)

**Who Is the Company Behind Forescout Platform?**

- **Seller:** [Forescout Technologies](https://www.g2.com/sellers/forescout-technologies)
- **Year Founded:** 2000
- **HQ Location:** San Jose, CA
- **Twitter:** @ForeScout (23,057 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/forescout-technologies (1,328 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Computer &amp; Network Security
- **Company Size:** 53% Enterprise, 29% Mid-Market


#### What Are Forescout Platform's Pros and Cons?

**Pros:**

- Security (4 reviews)
- Internet Security (3 reviews)
- IP Addressing (3 reviews)
- Monitoring (3 reviews)
- Customization (2 reviews)

**Cons:**

- Complex Implementation (2 reviews)
- Dependency Issues (2 reviews)
- Integration Issues (2 reviews)
- Performance Issues (2 reviews)
- Poor Customer Support (2 reviews)


### What Do G2 Reviewers Say About Forescout Platform?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **enhanced security** provided by Forescout, ensuring protection of sensitive information and resource access.
- Users value the **instant discovery and classification** of endpoints, enhancing network visibility and security management.
- Users value the **instant discovery and comprehensive visibility** of all IP-based devices provided by Forescout Platform.
- Users value the **instant discovery and classification** capabilities of Forescout, enhancing their network visibility and security.
- Users value the **customization options** of Forescout Platform, enhancing its adaptability to diverse network environments.

**Cons:**

- Users find the **implementation complex** , facing challenges with integration, documentation, and slow TAC support.
- Users face significant **dependency issues** with Forescout Platform, leading to complex integrations and prolonged implementation times.
- Users face numerous **integration issues** with Forescout Platform, complicating implementation and causing delays in troubleshooting.
- Users experience significant **performance issues** with Forescout Platform, often facing long implementation times and complex troubleshooting.
- Users report **poor customer support** , citing slow TAC response times and ineffective initial resolutions.

#### What Are Recent G2 Reviews of Forescout Platform?

**"[Complete Device Visibility with Powerful Automation and Integrations](https://www.g2.com/survey_responses/forescout-platform-review-10795997)"**

**Rating:** 4.5/5.0 stars
*— Sumit B.*

[Read full review](https://www.g2.com/survey_responses/forescout-platform-review-10795997)

---

**"[Flexible Platform That Simplifies Monitoring and Integration with your actual tools](https://www.g2.com/survey_responses/forescout-platform-review-12806544)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Information Technology and Services*

[Read full review](https://www.g2.com/survey_responses/forescout-platform-review-12806544)

---


#### What Are G2 Users Discussing About Forescout Platform?

- [What is Forescout Platform used for?](https://www.g2.com/discussions/what-is-forescout-platform-used-for)

### 21. [IBM Cloud Pack for Security](https://www.g2.com/products/ibm-cloud-pack-for-security/reviews)
IBM Cloud Pak for Security is a comprehensive, containerized software platform designed to help organizations integrate their existing security tools, providing deeper insights into threats across hybrid and multicloud environments. Built on Red Hat OpenShift, it enables security teams to detect, investigate, and respond to threats efficiently without the need to move data from its original location. Key Features and Functionality: - Federated Search: Conducts unified searches across diverse data sources, offering a comprehensive view of security environments without relocating data. - Threat Intelligence: Delivers actionable insights by integrating multiple threat intelligence feeds, aiding in the identification and prioritization of potential threats. - Orchestration and Automation: Automates response workflows and orchestrates actions across various security tools, enhancing the efficiency of incident management. - Data Security: Provides visibility into data activity and compliance across hybrid cloud environments, facilitating effective data protection strategies. - Risk Management: Aggregates and contextualizes risk insights from multiple vectors, presenting them in a unified dashboard to prioritize and remediate security risks. Primary Value and Problem Solved: IBM Cloud Pak for Security addresses the complexity of managing disparate security tools and data sources in hybrid and multicloud environments. By providing a unified platform that integrates existing security infrastructure, it enables organizations to uncover hidden threats, make informed risk-based decisions, and respond to incidents more swiftly. This approach not only enhances security posture but also reduces the time and cost associated with data movement and manual processes, allowing security teams to focus on strategic initiatives.


**Average Rating:** 4.0/5.0
**Total Reviews:** 1
**How Do G2 Users Rate IBM Cloud Pack for Security?**

- **Automated Remediation:** 6.7/10 (Category avg: 8.6/10)
- **Quality of Support:** 5.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 5.0/10 (Category avg: 8.5/10)
- **Workflow Automation:** 6.7/10 (Category avg: 8.8/10)

**Who Is the Company Behind IBM Cloud Pack for Security?**

- **Seller:** [IBM](https://www.g2.com/sellers/ibm)
- **Year Founded:** 1911
- **HQ Location:** Armonk, New York, United States
- **Twitter:** @IBMSecurity (74,660 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/1009/ (328,202 employees on LinkedIn®)
- **Ownership:** SWX:IBM

**Who Uses This Product?**
- **Company Size:** 100% Enterprise



#### What Are Recent G2 Reviews of IBM Cloud Pack for Security?

**"[IBM cloud Pack](https://www.g2.com/survey_responses/ibm-cloud-pack-for-security-review-9640363)"**

**Rating:** 4.0/5.0 stars
*— Siddharth S.*

[Read full review](https://www.g2.com/survey_responses/ibm-cloud-pack-for-security-review-9640363)

---


#### What Are G2 Users Discussing About IBM Cloud Pack for Security?

- [What is IBM Cloud Pack for Security used for?](https://www.g2.com/discussions/what-is-ibm-cloud-pack-for-security-used-for)

### 22. [Radiant](https://www.g2.com/products/radiant-security-radiant/reviews)
Radiant Security delivers a centralized AI SOC platform that unifies agentic AI triage, integrated response, and log management in a single solution. The platform provides 100% alert triage coverage across all security cases, escalating only real threats and applying analyst-level reasoning with full transparency. SOC teams maintain influence over the AI through guardrails, policies, and exclusions. Response is accelerated with 1-click action plans that can be executed manually or automated for the future. With unlimited log ingestion, real-time search, and affordable retention, Radiant eliminates the complexity and cost barriers of traditional SIEMs. With Radiant, security teams cut through alert noise, respond faster to real threats, scale without adding headcount, and significantly reduce SIEM costs.


**Average Rating:** 5.0/5.0
**Total Reviews:** 2
**How Do G2 Users Rate Radiant?**

- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)

**Who Is the Company Behind Radiant?**

- **Seller:** [Radiant Security](https://www.g2.com/sellers/radiant-security)
- **Year Founded:** 2021
- **HQ Location:** Milpitas, California, United States
- **LinkedIn® Page:** https://www.linkedin.com/company/radiantsecurity-ai (71 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 50% Mid-Market, 50% Small-Business


#### What Are Radiant's Pros and Cons?

**Pros:**

- Alerting System (2 reviews)
- Detection Accuracy (2 reviews)
- Support (2 reviews)
- Artificial Intelligence (1 reviews)
- Automated Response (1 reviews)

**Cons:**

- Insufficient Information (1 reviews)
- Limitations (1 reviews)
- Navigation Issues (1 reviews)
- Not Intuitive (1 reviews)
- Poor Interface Design (1 reviews)


### What Do G2 Reviewers Say About Radiant?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **transparency and efficiency** of Radiant&#39;s alerting system, significantly enhancing alert management and reducing false positives.
- Users commend the **detection accuracy** of Radiant, achieving a 70% reduction in false positives within weeks.
- Users value the **transparency and efficiency** of Radiant’s AI triage engine, enhancing alert handling and decision-making.
- Users value the **transparency and efficiency** of Radiant&#39;s AI, enhancing alert handling and decision-making clarity.
- Users commend the **automated response feature** for effectively triaging alerts and significantly reducing false positives.

**Cons:**

- Users note **insufficient information** regarding case management features, indicating room for improvement as the platform evolves.
- Users feel the **case management capabilities need improvements** despite the platform evolving quickly and meeting expectations.
- Users find the **navigation issues** in Radiant frustrating, often requiring more steps than expected for tasks.
- Users find the **UI not intuitive** , often facing unnecessary steps when navigating and building custom queries.
- Users find the **interface design lacking intuitiveness** , making navigation and query building more cumbersome than anticipated.

#### What Are Recent G2 Reviews of Radiant?

**"[Noisy alerts are no longer a problem for our SOC](https://www.g2.com/survey_responses/radiant-review-12217506)"**

**Rating:** 5.0/5.0 stars
*— Felipe D.*

[Read full review](https://www.g2.com/survey_responses/radiant-review-12217506)

---

**"[AI SOC automation exactly where we needed it](https://www.g2.com/survey_responses/radiant-review-11697116)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Computer Software*

[Read full review](https://www.g2.com/survey_responses/radiant-review-11697116)

---



### 23. [RiskIQ Illuminate](https://www.g2.com/products/riskiq-illuminate/reviews)
RiskIQ is the digital threat management, providing the most comprehensive discovery, intelligence and mitigation of threats associated with an organization’s digital presence


**Average Rating:** 5.0/5.0
**Total Reviews:** 1
**How Do G2 Users Rate RiskIQ Illuminate?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 6.7/10 (Category avg: 8.5/10)
- **Workflow Automation:** 5.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind RiskIQ Illuminate?**

- **Seller:** [RiskIQ](https://www.g2.com/sellers/riskiq)
- **Year Founded:** 2009
- **HQ Location:** San Francisco, US
- **Twitter:** @RiskIQ (10,963 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/riskiq_2 (33 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Enterprise



#### What Are Recent G2 Reviews of RiskIQ Illuminate?

**"[Good product](https://www.g2.com/survey_responses/riskiq-illuminate-review-8721574)"**

**Rating:** 5.0/5.0 stars
*— Yamini S.*

[Read full review](https://www.g2.com/survey_responses/riskiq-illuminate-review-8721574)

---



### 24. [Splunk Security Essentials](https://www.g2.com/products/splunk-security-essentials/reviews)
Splunk Security Essentials (SSE) provides customers with prescriptive security detections, analytic stories, and data onboarding recommendations to guide any organization through their security maturity journey. SSE enables customers to operationalize industry frameworks like MITRE ATT&amp;CK and Cyber Kill Chain to further enrich and provide context to their security detections.


**Average Rating:** 5.0/5.0
**Total Reviews:** 1

**Who Is the Company Behind Splunk Security Essentials?**

- **Seller:** [Cisco](https://www.g2.com/sellers/cisco)
- **Year Founded:** 1984
- **HQ Location:** San Jose, CA
- **Twitter:** @Cisco (720,366 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/cisco/ (95,545 employees on LinkedIn®)
- **Ownership:** NASDAQ:CSCO

**Who Uses This Product?**
- **Company Size:** 100% Enterprise



#### What Are Recent G2 Reviews of Splunk Security Essentials?

**"[Best SIEM tool](https://www.g2.com/survey_responses/splunk-security-essentials-review-7235425)"**

**Rating:** 5.0/5.0 stars
*— Aman P.*

[Read full review](https://www.g2.com/survey_responses/splunk-security-essentials-review-7235425)

---



### 25. [StegoSOC](https://www.g2.com/products/stegosoc/reviews)
cloud-based threat detection and management


**Average Rating:** 5.0/5.0
**Total Reviews:** 1
**How Do G2 Users Rate StegoSOC?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Workflow Automation:** 10.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind StegoSOC?**

- **Seller:** [StegoSOC](https://www.g2.com/sellers/stegosoc)
- **Year Founded:** 2016
- **HQ Location:** Durham, US
- **LinkedIn® Page:** https://www.linkedin.com/company/13353911 (2 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Small-Business


#### What Are StegoSOC's Pros and Cons?

**Pros:**

- Detection Accuracy (1 reviews)
- Ease of Use (1 reviews)
- Features (1 reviews)
- Reliability (1 reviews)
- Reporting Ease (1 reviews)



### What Do G2 Reviewers Say About StegoSOC?
*AI-generated summary from verified user reviews*

**Pros:**

- Users commend the **detection accuracy** of StegoSOC, finding it essential for uncovering hidden data efficiently.
- Users value the **ease of use** of StegoSOC, benefiting from its intuitive interface for seamless navigation.
- Users value the **intuitive interface** and **robust algorithms** of StegoSOC, enhancing digital investigations effectively.
- Users value the **reliability** of StegoSOC for accurate detection and comprehensive reporting in digital investigations.
- Users appreciate the **comprehensive reporting features** of StegoSOC, enhancing their experience in digital investigations.


#### What Are Recent G2 Reviews of StegoSOC?

**"[good software](https://www.g2.com/survey_responses/stegosoc-review-10318073)"**

**Rating:** 5.0/5.0 stars
*— Alka K.*

[Read full review](https://www.g2.com/survey_responses/stegosoc-review-10318073)

---




## What Is Security Orchestration, Automation, and Response (SOAR) Software?

[System Security Software](https://www.g2.com/categories/system-security)

## What Software Categories Are Similar to Security Orchestration, Automation, and Response (SOAR) Software?

- [Security Information and Event Management (SIEM) Software](https://www.g2.com/categories/security-information-and-event-management-siem)
- [Incident Response Software](https://www.g2.com/categories/incident-response)
- [AI SOC Agents](https://www.g2.com/categories/ai-soc-agents)


---

## How Do You Choose the Right Security Orchestration, Automation, and Response (SOAR) Software?

### What You Should Know About Security, Orchestration, Automation, and Response (SOAR) Software

### What is Security, Orchestration, Automation, and Response (SOAR) Software?

Security orchestration, automation, and response (SOAR) software helps coordinate, execute, and automate tasks between various IT workers and tools. SOAR tools allow organizations to respond quickly to cybersecurity attacks and observe, understand, and prevent future incidents.

SOAR software gives organizations a comprehensive view of their existing security systems while centralizing the security data. By automating security responses and reducing manual tasks, SOAR helps to generate a faster and more accurate response to security attacks. It also helps better coordinate and route incident response to the most appropriate IT worker in real time.

**What Does SOAR Stand For?**

SOAR stands for security orchestration, automation, and response. SOAR software significantly contributes to identifying potential future security threats.

### What are the Common Features of Security, Orchestration, Automation, and Response (SOAR) Software?

Usually, a SOAR software offering operates under three primary software capabilities:

**Threat and vulnerability management:** Threat and vulnerability management examines key assets and prioritizes efforts to reduce risk. Working with other security teams, threat and vulnerability management helps prevent attacks by threat actors.

**Security incident response:** Security incident response addresses and manages the aftermath of a security breach, cyberattack, computer incident, or security incident. Security incident response is to handle the aftermath of a security breach in a way that limits damage, reduces recovery time, and reduces cost.

**Security operations automation:** Security operations automation is the technology that enables the automation and orchestration of security tasks. This can include both administrative duties and incident detection and response.

### What are the Benefits of Security, Orchestration, Automation, and Response (SOAR) Software?

The benefits of using a SOAR tool are that it lessens the impact of security incidents and reduces the risk of legal liability. SOAR software helps companies’ security teams by enabling them to:

**Maintain a central view:** One of the benefits of SOAR software is that it gives security staff a central view and enables control of existing security systems while centralizing data collection to improve a company&#39;s security posture, operational efficiency, and productivity.&amp;nbsp;

**Automate manual tasks:** As with most software today, users are looking for help in terms of automation. SOAR software helps to manage and automate all aspects of a security incident lifecycle. This removes manual tasks, gives security staff more time to be productive, and allows them to focus on more mission-critical security tasks that do not require manual tasks.

**Define incident and response procedures:** SOAR software helps security systems define incident and response procedures. This helps to route security incidents to the correct security staff. SOAR can also prioritize and standardize the security response processes in a consistent, transparent, and documented way.&amp;nbsp;

**Optimize incident response** : Because SOAR software helps security staff define incident and response procedures, incident response is more accurate. This accuracy enables security systems and staff to have improved responses where they may have to contain, eradicate, or recover crucial data.&amp;nbsp;

**Identify and assign incident severity levels:** SOAR software helps to identify and assign incident severity levels. Severity levels in cybersecurity measure how severely a security incident impacts various parts of the organization. SOAR software automatically identifies and assigns severity levels, enabling the right security system and staff to respond appropriately. This means both can respond immediately to security incidents that may negatively affect an organization, such as networks, software, employee or customer data, etc.

**Support collaboration and unstructured investigations:** SOAR software supports collaboration and unstructured investigations in real time, helping route each security incident to the security system and security staff best suited to respond. Collaboration with other IT teams for tasks such as remediation or other departments such as legal is possible.&amp;nbsp;

**Streamline operations:** By using SOAR software, organizations can streamline security operations for threat and vulnerability management, security incident response, and security operations automation. SOAR software connects these security elements while integrating disparate security systems. SOAR software’s playbooks allow users to orchestrate, streamline and automate tasks. Playbooks also codify the process workflows that streamline the SOAR software functions.

### Who Uses Security, Orchestration, Automation, and Response (SOAR) Software?

**IT and cybersecurity staff:** They use SOAR software to handle security alerts such as phishing, which includes looking for threat feed data from endpoints, failed user logins, logins from unusual locations, malicious VPN access attempts, and so on. It&#39;s also used to hunt for threats and respond to incidents from attached files for malware analysis, cloud-aware incident response, and automate data enrichment. Cybersecurity staff who assign incident severity and check other products for vulnerability scores also use SOAR platforms.

### Challenges with Security, Orchestration, Automation, and Response (SOAR) software

There are a number of challenges with SOAR software that IT teams can encounter.

**Skill gaps:** While there is the misconception that SOAR software could replace security staff, the tool is meant to augment security teams, allowing them to work efficiently and effectively but not replacing them. However, there still may be a skills gap as the security team must be able to create detailed workflows of their processes.

**Effective deployment:** Another challenge of SOAR software is that it must be deployed to the enterprise but also connected to the other applications and technologies, which can be very complicated. An organization must also have staff with enough skills to deploy and maintain the platform. The applications and technologies used by the enterprise must also be able to support or be integrated into the SOAR software. One of SOAR software’s greatest strengths is to connect and orchestrate other technologies; however, if each technology is unable to be integrated, it hampers the benefits of deploying SOAR software.

### How to Buy Security, Orchestration, Automation, and Response Software

#### Requirements Gathering (RFI/RFP) for Security, Orchestration, Automation, and Response (SOAR) Software

If an organization is just starting out and looking to purchase SOAR software, g2.com can help select the best one.

Most business pain points might be related to all of the manual work that must be completed. If the company is large and has a lot of networks, data, or devices in its organization, they may need to shop for a SOAR software that can grow with its organization. Users should think about the pain points in security to help create a checklist of criteria. Additionally, the buyer must determine the number of employees who will need to use the SOAR software and if they currently have the skills to administer it.&amp;nbsp;

Taking a holistic overview of the business and identifying pain points can help the team springboard into creating a checklist of criteria. The checklist serves as a detailed guide that includes both necessary and nice-to-have features, including budget, features, number of users, integrations, security staff skills, cloud or on-premises solutions, and more.

Depending on the scope of the deployment, it might be helpful to produce an RFI, a one-page list with a few bullet points describing what is needed from SOAR software.

#### Compare Security, Orchestration, Automation, and Response (SOAR) Software

**Create a long list**

Vendor evaluations are an essential part of the software buying process from meeting the business functionality needs to implementation. For ease of comparison, after all demos are complete, it helps to prepare a consistent list of questions regarding specific needs and concerns to ask each vendor.

**Create a short list**

From the long list of vendors, it is helpful to narrow down the list of vendors and come up with a shorter list of contenders, preferably no more than three to five. With this list in hand, businesses can produce a matrix to compare the features and pricing of the various solutions.

**Conduct demos**

To ensure the comparison is comprehensive, the user should demo each solution on the shortlist with the same use cases. This will allow the business to evaluate like for like and see how each vendor stacks up against the competition.&amp;nbsp;

#### Selection of Security, Orchestration, Automation, and Response (SOAR) Software

**Choose a selection team**

Before getting started, creating a winning team that will work together throughout the entire process, from identifying pain points to implementation, is crucial. The software selection team should consist of organization members with the right interest, skills, and time to participate in this process. A good starting point is to aim for three to five people who fill roles such as the main decision maker, project manager, process owner, system owner, or staffing subject matter expert, as well as a technical lead, head administrator, or security administrator. In smaller companies, the vendor selection team may be smaller, with fewer participants multitasking and taking on more responsibilities.

**Compare notes**

The selection team should compare notes and facts and figures which they noted during the process, such as costs, security capabilities, and alert and incident response times.

**Negotiation**

Just because something is written on a company’s pricing page does not mean it&#39;s final. It is crucial to open up a conversation regarding pricing and licensing. For example, the vendor may be willing to give a discount for multi-year contracts or for recommending the product to others.

**Final decision**

After this stage, and before going all in, it is recommended to roll out a test run or pilot program to test adoption with a small sample size of users. If the tool is well used and well received, the buyer can be confident that the selection was correct. If not, it might be time to go back to the drawing board.

### What does Security, Orchestration, Automation, and Response (SOAR) Software cost?

SOAR is considered a long-term investment. This means there must be a careful evaluation of vendors, and the software should be tailored to each organization&#39;s specific requirements. Once a SOAR solution is purchased, deployed, and integrated into an organization’s security system, the cost could be high, which is why the evaluation stage of selecting SOAR software is so crucial. The notion of rip-and-replace cost can be high. The SOAR vendor chosen should continue to provide support for the SOAR solution with flexibility and open integration.

#### Return on Investment (ROI)

Organizations decide to purchase SOAR software with some type of return on investment (ROI). As they want to recoup the money spent on the software, it is critical to understand the costs that will be saved in terms of efficiency.

SOAR software saves security staff costs by eliminating manual tasks. For example, SOAR software automatically investigates the scenario of email phishing attacks which is very common, so this task can be very repetitive and consumes security staff time if it is done manually. A large enterprise used actual data from its SOAR software deployment and compared it to the cost of handling email phishing investigations automatically using SOAR software versus handling them manually. The enterprise found that the reduction in staff time required to handle phishing emails equated to savings of over $680,000 per year.

### Security, Orchestration, Automation, and Response (SOAR) Software Trends

**Enterprises:** Due to the requirements to maintain such large-scale IT and network infrastructure, organizations such as large enterprises tend to be more interested in purchasing SOAR software. Having such large networks and more complex IT makes such organizations more vulnerable to security threats which is another drive to purchase SOAR software. Also, larger organizations have more employees with more devices, which increases threats if they are accessing workplace applications on these devices.

**Retail and e-commerce:** These industries have increased interest in SOAR software due to the vulnerabilities in PoS)transactions and online purchases. It is the processing of these monetary transactions which creates a security risk, especially there personal and financial information of customers. Adopting technologies such as location-based marketing for these types of purchases also makes the retail industry more vulnerable to security threats.




