Splunk SOAR (Security Orchestration, Automation and Response) Features

Response (7)

Resolution Automation: As reported in 17 Splunk SOAR (Security Orchestration, Automation and Response) reviews. Diagnose and resolve incidents without the need for human interaction.
Resolution Guidance: As reported in 17 Splunk SOAR (Security Orchestration, Automation and Response) reviews. Guide users through the resolution process and give specific instructions to remedy individual occurrences.
System Isolation: Cuts off network connection or temporarily inactivate applications until incidents are remedied. 18 reviewers of Splunk SOAR (Security Orchestration, Automation and Response) have provided feedback on this feature.
Threat Intelligence: Based on 17 Splunk SOAR (Security Orchestration, Automation and Response) reviews. Gathers information related to threats in order to gain further information on remedies.
Alerting: As reported in 21 Splunk SOAR (Security Orchestration, Automation and Response) reviews. Clearly notifies users with relevant information and anomalies in a timely manner.
Performance Baselin: Sets a standard performance baseline by which to compare log activity. This feature was mentioned in 20 Splunk SOAR (Security Orchestration, Automation and Response) reviews.
High Availability/Disaster Recovery: As reported in 19 Splunk SOAR (Security Orchestration, Automation and Response) reviews. Allows platform to scale to size of desired environment and configured with high availability and disaster recovery capabilities.

Incident Logs: Information on each incident is stored in databases for user reference and analytics. 18 reviewers of Splunk SOAR (Security Orchestration, Automation and Response) have provided feedback on this feature.
Incident Reports: Produces reports detailing trends and vulnerabilities related to their network and infrastructure. This feature was mentioned in 17 Splunk SOAR (Security Orchestration, Automation and Response) reviews.
Resource Usage: Analyzes recurring incidents and remedies to ensure optimal resource usage. 18 reviewers of Splunk SOAR (Security Orchestration, Automation and Response) have provided feedback on this feature.

Incident Alerts: Based on 18 Splunk SOAR (Security Orchestration, Automation and Response) reviews. Gives alerts when incidents arise. Some responses may be automated, but users will still be informed.
Database Management: Adminstrators can access and organize data related to incidents to produce reports or make data more navigable. 16 reviewers of Splunk SOAR (Security Orchestration, Automation and Response) have provided feedback on this feature.
Workflow Management: Administrators can organize workflows to guide remedies to specific situations incident types. This feature was mentioned in 17 Splunk SOAR (Security Orchestration, Automation and Response) reviews.

Workflow Mapping: Visually displays connected applications and integrated data. Allows customization and management of workflow structures. 20 reviewers of Splunk SOAR (Security Orchestration, Automation and Response) have provided feedback on this feature.
Workflow Automation: Based on 22 Splunk SOAR (Security Orchestration, Automation and Response) reviews. Streamline the flow of work processes by establishing triggers and alerts that notify and route information to the appropriate people when their action is required within the compensation process.
Automated Remediation: Reduces time spent remedying issues manually. Resolves common network security incidents quickly. This feature was mentioned in 20 Splunk SOAR (Security Orchestration, Automation and Response) reviews.
Log Monitoring: Constantly monitors logs to detect anomalies in real time. 20 reviewers of Splunk SOAR (Security Orchestration, Automation and Response) have provided feedback on this feature.

Security Orchestration: Integrates additional security tools to automate security and incident response processes. 20 reviewers of Splunk SOAR (Security Orchestration, Automation and Response) have provided feedback on this feature.
Data Collection: Collects information from multiple sources to cross reference and build contextual to correlate intelligence. This feature was mentioned in 21 Splunk SOAR (Security Orchestration, Automation and Response) reviews.
Threat Intelligence: As reported in 20 Splunk SOAR (Security Orchestration, Automation and Response) reviews. Stores information related to common threats and how to resolve them once incidents occur.
Data Visualization: Offer pre-built and custom reporting and dashboards for quick insights into system states. This feature was mentioned in 20 Splunk SOAR (Security Orchestration, Automation and Response) reviews.