Previously, the authors have overviewed the global market of the SOAR systems. Modern automation systems for responding to information security incidents were analyzed. Also, the relevance of this class of solutions was shown and a large number of various products were presented. This document provides an analytical overview of well-known commercial solutions of the IRP/SOAR class from domestic and foreign vendors offering their products in Russia. The products were analyzed based on their general and technical features as well as functionalities. The great capabilities of ERP/SAP solutions for automating the processing of cyber incidents and performing related actions (analytics, correlation, visualization), including Machine Learning, Artificial Intelligence, and Big Data, are demonstrated. Conclusions are drawn for each section.
More detailed. Read also...
