15 years helping Irish businesses
choose better software

SOAR Software

Security Orchestration, Automation, and Response (SOAR) software provide businesses with tools to detect security threats and automate incident response processes via data integration.

CanIPhish provides the world's first self-service phishing simulation platform. Sign-up for free and access our platform in minutes.
Train your users and reduce their phish click risk by up to 90% with an easy-to-use market-leading platform. Our platform does this by utilising real-world techniques and phishing material to phish and train employees. We track all interactions from emails viewed, to payloads clicked to credentials and endpoints compromised. We allow you to then identify which users are prone to phishing material and target them for future training. We use a modern approach to combat a modern threat. Learn more about CanIPhish

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Logsign Unified SecOps Platform delivers comprehensive threat detection, investigation, and response (TDIR).
Logsign Unified SecOps Platform delivers comprehensive threat detection, investigation, and response (TDIR) through integrated next-gen SIEM, threat intelligence, UEBA, and SOAR capabilities. Consolidate your security data, gain actionable insights, and automate responses for streamlined defense against threats. The platform seamlessly integrates with your existing security software, leveraging our vast integration library to expand functionality and provide a comprehensive security management experience. Learn more about Logsign Unified SO Platform

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Helping Security Teams, Enterprises, and MSSPs Prioritize and Respond to What Really Matters.
DFLabs is a pioneer and recognized global leader in Security Orchestration, Automation, and Response (SOAR) technology. The companys management team has helped shape the cyber security industry, which includes co-editing several industry standards such as ISO 27043 and ISO 30121. Its flagship product, IncMan SOAR, is multi-patented, and it has been adopted by Fortune 500 and Global 2000 organizations worldwide. DFLabs has operations in EMEA Americas and APAC. Learn more about IncMan SOAR

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
User behavior analytics and vulnerability management solution that helps businesses identify internal and external threats.
ArcSight is a security operations and analytics platform that provides holistic security monitoring, threat detection, investigation, and response capabilities. The platform offers real-time correlation, behavioral analytics, and orchestration to help security teams detect threats, streamline investigations, and automate response workflows. Key capabilities include multi-layered analytics, adversary intelligence, log management, MITRE ATT&CK framework integration, and a data lake for collecting and enriching security data. Learn more about ArcSight

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Logpoint's SIEM+SOAR & UEBA platform helps businesses protect their infrastructure from breaches & efficiently respond to cyberattacks
Logpoint is the creator of a reliable, innovative cybersecurity operations platform — empowering organizations to thrive in a world of evolving threats. By combining sophisticated technology and a profound understanding of customer challenges, Logpoint bolsters security teams’ capabilities while helping them combat current and future threats. Logpoint offers SIEM, UEBA, SOAR and SAP security technologies converged into a complete platform that efficiently detects and respond to threats. Learn more about LogPoint

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
SIEM solution that helps businesses with performance, security, and availability monitoring to detect and remediate security threats.
SIEM solution that helps businesses with performance, security, and availability monitoring to detect and remediate security threats. Learn more about FortiSIEM

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Log360 is a comprehensive SIEM solution that helps you combat threats on premises, in the cloud, or in a hybrid environment.
Log360 is a SIEM solution that helps combat threats on premises, in the cloud, or in a hybrid environment. It also helps organizations adhere to several compliance mandates. You can customize the solution to cater to your unique use cases. It offers real-time log collection, analysis, correlation, alerting and archiving abilities. You can monitor activities that occur in your Active Directory, network devices, employee workstations, file servers, Microsoft 365, cloud services and more. Learn more about ManageEngine Log360

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Behavioural analysis tool to detect weak signals & anomalies in information systems using forensics & extensive research algorithms.
SaaS on-premise behavioural analysis engine to detect weak signals & anomalies in information systems using forensics & extensive research algorithms. Learn more about Reveelium

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
DNIF HYPERCLOUD is Cloud native SIEM, UEBA and SOAR build to discover threat campaigns and cut analyst overhead.
DNIF HYPERCLOUD is a cloud-native SIEM unified with UEBA, SOAR & analytical capabilities. The solution is built for organisations with larger datasets who find existing solution expensive to scale. DNIF HYPERCLOUD is design keeping in mind the cyber-security use cases for which we are offering our clients the ability to ingest large data sets onto the platform, run analytics, identify threats and threat campaigns, investigate those threats and respond to threats through a single pane of glass. Learn more about DNIF HYPERCLOUD

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
It is a cloud security solution that helps businesses manage threats, remediate ransomware, track incidents, and more.
It is a cloud security solution that helps businesses manage threats, remediate ransomware, track incidents, and more. Learn more about Cortex XSOAR

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Web-based phishing emergency platform that allows users to identify and respond to potentially malicious email threats.
Web-based phishing emergency platform that allows users to identify and respond to potentially malicious email threats. Learn more about PhishER

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
BIMA by Perisai merges EDR, NDR, XDR, and SIEM features for a holistic cybersecurity approach. For specifics, consult Perisai directly.
BIMA by Peris.ai is redefining cybersecurity with its integrated EDR, NDR, XDR, and SIEM framework, enhanced by the power of generative AI and advanced machine learning. These innovations not only bolster defense mechanisms but also bring predictive analytics and adaptive responses to the forefront, making BIMA a powerhouse in proactive cybersecurity. Learn more about BIMA

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
D3 SOAR is a platform with a fully embedded MITRE ATT&CK Module, for better Threat Intelligence, Monitoring, and Hunting.
D3 SOAR is a platform with a fully embedded MITRE ATT&CK Module, D3 Security helps SOC teams become Threat Hunters with streamlined workflows and $$$,$$$ in cost savings per year. With D3 SOAR, you can unify teams across borders and job functions: Easily manage all Incidents and Cases, collaborate on complex security and legal investigations, conduct post-incident analyses, derive actionable analytics, and automatically report on progress to continually improve your security posture. Learn more about D3 SOAR

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Swimlane is the leader in cloud-scale, low-code security automation and SOAR solutions.
Swimlane is the leader in cloud-scale, low-code security automation. Swimlane unifies security operations in-and-beyond the SOC into a single system of record that helps overcome process and data fatigue, chronic staffing shortages, and quantifying business value. The Swimlane Turbine platform combines human and machine data into actionable intelligence for security leaders. Learn more about Swimlane

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Teleport (OSS & Enterprise) is a gateway for managing access to K8s clusters, Linux & Windows servers, databases, and applications.
Teleport is a secure access solution that consolidates infrastructure access into a single platform. With Teleport, engineers and security teams get unified access to Linux and Windows servers, Kubernetes clusters, databases, and DevOps applications like CI/CD, version control, and monitoring dashboards across all environments. Teleport replaces VPNs, shared credentials, and legacy privileged access management technologies to improve security and engineering productivity. Learn more about Teleport

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Orchestrate, Automate and Respond to security alerts using Visual Playbooks and Case Management modules from the platform.
SOAR Tools lets users orchestrate, automate and respond to security alerts using Visual Playbooks and Case Management modules from the platform. Learn more about SOAR Tools

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
SaaS cybersecurity platform that helps businesses manage incidents, prevent losses, mitigate threats and more.
A turn-key solution for your IT and business stakeholders to respond to cyberattacks at the world-class level. ORNA incorporates your entire cyber incident response program in a single platform with pre-populated cyber incident response playbooks that will guide the entire team, not just the IT, letting you handle all aspects of the SANS cyber incident response process, from the technical, legal, PR operational and compliance standpoint. Learn more about Orna

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Fidelis Elevate integrates seamlessly with SOAR solutions, providing them with deep visibility and automated response capabilities.
Fidelis Elevate is the only XDR Solution that delivers endpoint security, Network Security, Deception & active Directory protection in a single platform, making it the powerhouse of a cyber-resilient environment. Fidelis Elevate integrates seamlessly with Security Orchestration, Automation, and Response (SOAR) solutions, providing them with valuable contextual visibility and automated response capabilities to streamline security operations. By orchestrating incident response workflows, automating response actions, and enabling cross-platform integration, Fidelis Elevate helps organizations improve the efficiency and effectiveness of their security operations. With Fidelis Elevate, organizations can leverage the power of automation to accelerate incident response, mitigate threats, and minimize the impact of security incidents. Learn more about Fidelis Elevate

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
STORM improves incident management by helping analysts securely orchestrate, automate and respond to incidents.
Improve incident management with STORM. STORM is SOAR software that quickly helps analysts manage the orchestration, automation and response of security incidents. Plus, its secure structured communication components allow you to coordinate between IT, security, SOC, risk and management teams. Learn more about STORM

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Siemplify's platform helps you manage security operations from end to end, manage alerts at scale and respond with speed and precision.
The Siemplify Security Operations Platform is an intuitive, cloud-native workbench that makes security operations smarter, more efficient and more effective. Siemplify combines security orchestration, automation and response (SOAR) with context-driven case management, investigation, and business intelligence to make analysts more productive, security engineers more effective, and managers more informed about SOC performance. Learn more about Siemplify

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Cyware's SOAR Fusion unifies and augments security technology designed to optimize security operations and automate routine tasks.
Cyware is the industry leader for Virtual Cyber Fusion Centers that enable end-to-end threat intelligence automation, sharing, and unprecedented threat response for organizations globally. Learn more about Cyware

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Revealing the "genetic" origins of software, Intezer introduces a new way to detect and respond to cyber threats.
Intezer offers the most efficient Cloud Workload Protection Platform in the market. Identifying the genetic origins of all applications running on your infrastructure, Intezer defends against any unauthorized or malicious code while providing full visibility in runtime. For more information, visit www.intezer.com or follow the company on Twitter at @IntezerLabs. Learn more about Intezer Protect

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
The future of Cyber Defense warfare. Easy to use localized console with toolkit for new and expert users.
S.O.A.R (SIEM Orchestration Automation Response) PURVEYOR (SasS) The Cyber Defense Console and Toolkit. Supported by Counterveils Managed and Unmanaged XDR Platform offers limitless potential. Payment schedules are flexible. Learn more about S.O.A.R

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Cybersprint offers full visibility into your organisation’s attack surface and the associated digital risks.
Cybersprint gives organisations control over complex digital risks related to their brand’s attack surface. Our ’zero touch’ platform offers full risk-to-remediation visibility in minutes, based on continuous and automated discovery and monitoring of the attack surface. Cybersprint offers benefits for CISOs and analysts, from risk to root cause. Learn more about Cybersprint

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts
Security automation for the entire threat lifecycle
Automate repetitive, time consuming and mundane security tasks at machine speeds and enterprise scale, and free your security analysts to focus on higher value security activities. End-to-end automation and orchestration empowers SOC teams by automating threat analysis and detection of new critical threats, alert triage, incident response, threat hunting and forensic investigations. Learn more about SOAR+

Features

  • Threat Intelligence
  • Process/Workflow Automation
  • Third-Party Integrations
  • Risk Alerts