15 years helping Singaporean businesses
choose better software

Security Orchestration Automation Response Tools (SOAR)

Security Orchestration, Automation, and Response (SOAR) software provide businesses with tools to detect security threats and automate incident response processes via data integration.

33 results

Swimlane is the leader in cloud-scale, low-code security automation and SOAR solutions. Learn more about Swimlane
Swimlane is the leader in cloud-scale, low-code security automation. Swimlane unifies security operations in-and-beyond the SOC into a single system of record that helps overcome process and data fatigue, chronic staffing shortages, and quantifying business value. The Swimlane Turbine platform combines human and machine data into actionable intelligence for security leaders. Learn more about Swimlane

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
CanIPhish provides the world's first self-service phishing simulation platform. Sign-up for free and access our platform in minutes.
Train your users and reduce their phish click risk by up to 90% with an easy-to-use market-leading platform. Our platform does this by utilising real-world techniques and phishing material to phish and train employees. We track all interactions from emails viewed, to payloads clicked to credentials and endpoints compromised. We allow you to then identify which users are prone to phishing material and target them for future training. We use a modern approach to combat a modern threat. Learn more about CanIPhish

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Helping Security Teams, Enterprises, and MSSPs Prioritize and Respond to What Really Matters.
DFLabs is a pioneer and recognized global leader in Security Orchestration, Automation, and Response (SOAR) technology. The companys management team has helped shape the cyber security industry, which includes co-editing several industry standards such as ISO 27043 and ISO 30121. Its flagship product, IncMan SOAR, is multi-patented, and it has been adopted by Fortune 500 and Global 2000 organizations worldwide. DFLabs has operations in EMEA Americas and APAC. Learn more about IncMan SOAR

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Logpoint's SIEM+SOAR & UEBA platform helps businesses protect their infrastructure from breaches & efficiently respond to cyberattacks
Logpoint is the creator of a reliable, innovative cybersecurity operations platform — empowering organizations to thrive in a world of evolving threats. By combining sophisticated technology and a profound understanding of customer challenges, Logpoint bolsters security teams’ capabilities while helping them combat current and future threats. Logpoint offers SIEM, UEBA, SOAR and SAP security technologies converged into a complete platform that efficiently detects and respond to threats. Learn more about LogPoint

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
User behavior analytics and vulnerability management solution that helps identify internal and external threats.
User behavior analytics and vulnerability management solution that helps identify internal and external threats. Learn more about ArcSight

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
SIEM solution that helps businesses with performance, security, and availability monitoring to detect and remediate security threats.
SIEM solution that helps businesses with performance, security, and availability monitoring to detect and remediate security threats. Learn more about FortiSIEM

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Log360 is a comprehensive SIEM solution that helps you combat threats on premises, in the cloud, or in a hybrid environment.
Log360 is a SIEM solution that helps combat threats on premises, in the cloud, or in a hybrid environment. It also helps organizations adhere to several compliance mandates. You can customize the solution to cater to your unique use cases. It offers real-time log collection, analysis, correlation, alerting and archiving abilities. You can monitor activities that occur in your Active Directory, network devices, employee workstations, file servers, Microsoft 365, cloud services and more. Learn more about ManageEngine Log360

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Behavioural analysis tool to detect weak signals & anomalies in information systems using forensics & extensive research algorithms.
SaaS on-premise behavioural analysis engine to detect weak signals & anomalies in information systems using forensics & extensive research algorithms. Learn more about Reveelium

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
DNIF HYPERCLOUD is Cloud native SIEM, UEBA and SOAR build to discover threat campaigns and cut analyst overhead.
DNIF HYPERCLOUD is a cloud-native SIEM unified with UEBA, SOAR & analytical capabilities. The solution is built for organisations with larger datasets who find existing solution expensive to scale. DNIF HYPERCLOUD is design keeping in mind the cyber-security use cases for which we are offering our clients the ability to ingest large data sets onto the platform, run analytics, identify threats and threat campaigns, investigate those threats and respond to threats through a single pane of glass. Learn more about DNIF HYPERCLOUD

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
It is a cloud security solution that helps businesses manage threats, remediate ransomware, track incidents, and more.
It is a cloud security solution that helps businesses manage threats, remediate ransomware, track incidents, and more. Learn more about Cortex XSOAR

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Web-based phishing emergency platform that allows users to identify and respond to potentially malicious email threats.
Web-based phishing emergency platform that allows users to identify and respond to potentially malicious email threats. Learn more about PhishER

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
D3 SOAR is a platform with a fully embedded MITRE ATT&CK Module, for better Threat Intelligence, Monitoring, and Hunting.
D3 SOAR is a platform with a fully embedded MITRE ATT&CK Module, D3 Security helps SOC teams become Threat Hunters with streamlined workflows and $$$,$$$ in cost savings per year. With D3 SOAR, you can unify teams across borders and job functions: Easily manage all Incidents and Cases, collaborate on complex security and legal investigations, conduct post-incident analyses, derive actionable analytics, and automatically report on progress to continually improve your security posture. Learn more about D3 SOAR

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Teleport (OSS & Enterprise) is a gateway for managing access to K8s clusters, Linux & Windows servers, databases, and applications.
Teleport is a secure access solution that consolidates infrastructure access into a single platform. With Teleport, engineers and security teams get unified access to Linux and Windows servers, Kubernetes clusters, databases, and DevOps applications like CI/CD, version control, and monitoring dashboards across all environments. Teleport replaces VPNs, shared credentials, and legacy privileged access management technologies to improve security and engineering productivity. Learn more about Teleport

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Orchestrate, Automate and Respond to security alerts using Visual Playbooks and Case Management modules from the platform.
SOAR Tools lets users orchestrate, automate and respond to security alerts using Visual Playbooks and Case Management modules from the platform. Learn more about SOAR Tools

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
SaaS cybersecurity platform that helps businesses manage incidents, prevent losses, mitigate threats and more.
A turn-key solution for your IT and business stakeholders to respond to cyberattacks at the world-class level. ORNA incorporates your entire cyber incident response program in a single platform with pre-populated cyber incident response playbooks that will guide the entire team, not just the IT, letting you handle all aspects of the SANS cyber incident response process, from the technical, legal, PR operational and compliance standpoint. Learn more about Orna

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
STORM improves incident management by helping analysts securely orchestrate, automate and respond to incidents.
Improve incident management with STORM. STORM is SOAR software that quickly helps analysts manage the orchestration, automation and response of security incidents. Plus, its secure structured communication components allow you to coordinate between IT, security, SOC, risk and management teams. Learn more about STORM

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Siemplify's platform helps you manage security operations from end to end, manage alerts at scale and respond with speed and precision.
The Siemplify Security Operations Platform is an intuitive, cloud-native workbench that makes security operations smarter, more efficient and more effective. Siemplify combines security orchestration, automation and response (SOAR) with context-driven case management, investigation, and business intelligence to make analysts more productive, security engineers more effective, and managers more informed about SOC performance. Learn more about Siemplify

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Cyware's SOAR Fusion unifies and augments security technology designed to optimize security operations and automate routine tasks.
Cyware is the industry leader for Virtual Cyber Fusion Centers that enable end-to-end threat intelligence automation, sharing, and unprecedented threat response for organizations globally. Learn more about Cyware

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Revealing the "genetic" origins of software, Intezer introduces a new way to detect and respond to cyber threats.
Intezer offers the most efficient Cloud Workload Protection Platform in the market. Identifying the genetic origins of all applications running on your infrastructure, Intezer defends against any unauthorized or malicious code while providing full visibility in runtime. For more information, visit www.intezer.com or follow the company on Twitter at @IntezerLabs. Learn more about Intezer Protect

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
The future of Cyber Defense warfare. Easy to use localized console with toolkit for new and expert users.
S.O.A.R (SIEM Orchestration Automation Response) PURVEYOR (SasS) The Cyber Defense Console and Toolkit. Supported by Counterveils Managed and Unmanaged XDR Platform offers limitless potential. Payment schedules are flexible. Learn more about S.O.A.R

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Cybersprint offers full visibility into your organisation’s attack surface and the associated digital risks.
Cybersprint gives organisations control over complex digital risks related to their brand’s attack surface. Our ’zero touch’ platform offers full risk-to-remediation visibility in minutes, based on continuous and automated discovery and monitoring of the attack surface. Cybersprint offers benefits for CISOs and analysts, from risk to root cause. Learn more about Cybersprint

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Security automation for the entire threat lifecycle
Automate repetitive, time consuming and mundane security tasks at machine speeds and enterprise scale, and free your security analysts to focus on higher value security activities. End-to-end automation and orchestration empowers SOC teams by automating threat analysis and detection of new critical threats, alert triage, incident response, threat hunting and forensic investigations. Learn more about SOAR+

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
SOAR platform designed to help businesses calculate risk scores for multiple assets and prioritize responses.
SOAR platform designed to help businesses calculate risk scores for multiple assets and prioritize responses. Learn more about SIRP

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
eThalamus SOAR unifies and automates all Cybersecurity applications with a simple, easy-to-use interface.
eThalamus' modular design integrates the tools needed to centralize Cybersecurity management and streamline monitoring, alert, support, operation, reporting, and incident management tasks. - Ticketing System catalogs and manages security alerts. Applying use cases and specialized care guides by threat, platform and environment, reduce response time. - Dashboard provides online visibility to address a continuous improvement process. Learn more about ethalamus

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
ThreatConnect SOAR Platform provides a central location to integrate not only security tools but all security team processes.
ThreatConnect’s SOAR Platform includes intelligence, automation, analytics, and workflows in a single platform. The platform drives collaboration across threat intelligence, security operations, and incident response teams by providing the ability to put security data in context with intelligence and analytics, establish process consistency with Playbooks, integrate disparate technologies across the stack with workflows from a centralized system of record, and measure effectiveness. Learn more about ThreatConnect SOAR Platform

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Adaptive security orchestration, automation & response (SOAR) solution that combines case management, automation & orchestration tools.
Adaptive security orchestration, automation and response (SOAR) solution that combines case management, automation, and orchestration tools. Learn more about FortiSOAR

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
U.S.T.A. is a cyber threat intelligence platform that provides actionable insights right from the source and prevent potential threats.
U.S.T.A. is a cyber threat intelligence platform that provides actionable insights right from the source. U.S.T.A. uses proprietary techniques to detect cyber threats at the early stages of a possible attack. The U.S.T.A. platform also provides information about other types of intelligence reports in separate sections such as corporate credential leaks, phishing attempts, malware infections, stolen credit cards, allowing users to assess the priority and criticality of every individual alert. Learn more about U.S.T.A.

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
DTonomy leverage AI and automation to help security team - automate repetitive tasks - reduce false positives - recover attack stories
Modern cybersecurity teams are overwhelmed with alerts from a variety of systems such as cloud, SaaS, networks, endpoint etc. Most teams receive thousands of alerts every day and large enterprises can receive millions daily. While these alerts are important for identifying indicators of risk, the average security team leaves 44% of all alerts to go uninvestigated, according to Cisco. DTonomy enables security team to automate many mundane tasks, saving 80% on investigation and response. Learn more about DTonomy AIR

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
ServiceNow Security Operations is a cloud-based software that provides IT service management and workflow automation.
ServiceNow Security Operations is a ServiceNow solution that helps organizations identify, prioritize, and respond to security threats faster. It connects existing security tools into a unified platform with security orchestration, automation, and response capabilities to quickly resolve incidents. The solution features security incident response and vulnerability response workflows to strengthen an organization's security posture. Learn more about ServiceNow Security Operations

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Proactively identify threat campaigns, streamline security operations, reduce false positives, and impore MTTD and MTTR.
UnderDefense MAXI is cloud-native Security-as-a-Service SOAR platform designed for security teams of all sizes to prioritize and respond to security incidents, reduce analyst overhead through 1500+ pre-built correlation rules, improve incident tracking and management, and reduce false positives across cloud, hybrid, and on-premise environments. Learn more about UnderDefense MAXI

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Cyware Orchestrate is a security automation platform that enables organizations to automate across cloud and on-premise environments
Cyware Orchestrate is a security automation platform that enables organizations to automate across cloud and on-premise environments Learn more about Cyware Orchestrate

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Yakabod Cyber Incident Manager enables higher education institutions, enterprises & government CISOs to manage cyber incidents.
Yakabod's zero trust platform, Cyber Incident Manager enables higher education institutions, enterprises & government CISOs to manage cyber incidents. Enable secure collaboration without compromising sensitive data. Granular access controls provide full control over accessibility with the ability to share what you need internally or externally without compromising specific data within the case. Case version controls, strategic reporting and dashboards give management actionable insights. Learn more about Yakabod Cyber Incident Manager

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts
Cyware Respond is an automated incident analysis platform that provides advanced threat visibility for security teams.
Cyware Respond is an automated incident analysis platform that provides advanced threat visibility for security teams. Learn more about Cyware Respond

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third Party Integrations
  • Risk Alerts