Security Orchestration, Automation and Response Platform

The in-house developed Security Orchestration, Automation and Response (SOAR) Platform is the automated center of the ON2IT Security Operations Center (SOC). The Platform offers flexibility, independence, advanced automation and innovation within the SOC.

Read more

The automated center for Managed Security Services

The ON2IT SOC operates from our in-house developed Security Orchestration, Automation and Response (SOAR) Platform: the automated center for our Managed Security Services.

We developed the Platform because we prefer flexibility, independence, automation and innovation rather than the technical limitations of manual checks. This enables you and us to spend more time on key issues and innovations. This enables you and us to spend more time on key issues and innovations.

We register all service requests in the SOAR, including follow-up and possible solutions. This provides real-time insight into status and actions, together with relevant reports from the reporting module. These reports help you and our Security Operation Center to evaluate and – if necessary – propose improvements to the IT security.

The Platform supports your IT security, regardless of your hardware supplier or technology (Palo Alto Networks, Check Point, Cisco and Fortinet).

Security incidents are managed in Event Flow, our in-house developed intelligent threat management.

Event Flow doesn’t just provide raw data, it interprets the data and makes suggestions for concrete solutions to mitigate detected threats. It’s quite usual that 120,000 security incidents per month at an organization, are reduced to 20 incidents that actually require attention.

Smart IT security: visible and in control

All service requests, follow-up and possible solutions are on one platform. Smart, comprehensible and verifiable.

The Security Orchestration, Automation and Response Platform offers:

  • A high-level dashboard

    The center for operations, threat management and reports

  • Clear reports

    Technical and management reports on a monthly basis as evidence that you are compliant with various regulations

  • Best practice and gap reports

    SOAR checks the status of the security in run-time. As soon as any deviant behavior is detected, a ticket is automatically created and picked up by our ON2IT SOC

  • Quick prevention through automation

    Our threat intelligence system Event Flow that was developed in-house ensures better insight into data and data traffic, which allows establishment of advanced automation and rules of engagement

  • Rules of Engagement

    The SOAR responds automatically to best practices and parameters from the ON2IT playbook. This playbook is continuously updated with the latest findings and experiences.

  • Ticket system

    Changes, security events and incidents are automatically detected and reported. The Platform ensures that your IT security is verified as compliant.

  • Insight into hardware configurations

    One central platform with all information about configuration, location, status and monitoring agreements for all hardware. Insight regarding your IT compliance

  • Role-based access

    Role-based access to tickets, reports and service management

  • Multi-vendor and multi-technology

    The ON2IT Platform provides independent support, regardless of the hardware technology used, which could be from Palo Alto Networks, Check Point, Fortinet, SafeBreach, NeuVector or Cisco.

  • Security Self Services

    Your security services are also available within the Platform: Filer 3.0 (securely sharing large files), Managed Mail Security and Multifactor Authentication.

Want to know more?

Would you like to know what the Security Platform can offer your organization?

Contact us