Huntsman Next Gen SIEM SOAR (Analyst Portal)

Huntsman Next Gen SIEM SOAR (Analyst Portal) is a cyber security analytics application designed to detect, analyze, and manage cyber security threats for organizations of all sizes. According to the vendor, this platform is suitable for managed security service providers (MSSPs) and organizations ranging from small to large enterprises. It is utilized by various professions and industries, including MSSPs, government agencies, financial services, critical infrastructure, and the health sector.

Key Features

Built-in high speed detection capabilities: Huntsman Next Gen SIEM SOAR (Analyst Portal) incorporates built-in high-speed detection capabilities aligned with the MITRE ATT&CK® framework, which the vendor claims enables efficient identification and classification of threats.

Extensive automated response script and command execution capabilities: The platform offers extensive automated response script and command execution capabilities, which, according to the vendor, enable quick and efficient response to detected threats.

Any data set easily translated into a report and automatically published: Huntsman Next Gen SIEM SOAR (Analyst Portal) allows for the translation of any data set within the system into a report that can be automatically published to relevant stakeholders, streamlining the reporting process, as claimed by the vendor.

Real-time machine learning capabilities to detect unknown threats: The platform utilizes real-time machine learning capabilities to detect unknown threats, going beyond predefined patterns and signatures to identify previously unknown and emerging threats, according to the vendor.

Complete support for the alert triage, investigation, and response lifecycle: Huntsman Next Gen SIEM SOAR (Analyst Portal) provides complete support for the alert triage, investigation, and response lifecycle, including alert prioritization, investigation workflows, and automated response actions, as stated by the vendor.

Centralized management and coordination of security activities: The platform offers centralized management and coordination of alerting rules, event collection, queries, and reports, providing reliable security governance through a single point of control, according to the vendor.

Advanced, high-speed in-stream event processing, analytics, and response decision making: Huntsman Next Gen SIEM SOAR (Analyst Portal) features advanced, high-speed in-stream event processing, analytics, and response decision making capabilities for rapid and accurate threat management, as claimed by the vendor.

Behavioural anomaly detection with machine-learning: The platform incorporates behavioural anomaly detection capabilities using machine learning techniques to identify abnormal and potentially malicious behavior beyond predefined patterns and signatures, according to the vendor.

Support for virtualization and cloud/on-premise deployment: Huntsman Next Gen SIEM SOAR (Analyst Portal) supports both virtualization and cloud/on-premise deployment options, offering flexibility in deployment models to suit organizational infrastructure and security requirements, as stated by the vendor.

Optimized for detection, correlation, and reporting with inbuilt alerts: The platform is optimized for detection, correlation, and reporting out of the box, providing an extensive range of inbuilt alerts for attacks, technology types, and compliance standards to enhance threat detection and compliance reporting, according to the vendor.