Palo Alto Cortex
In the security engines with which Incident Responder is integrated, the end user’s e-mail is analysed. If the analysis results are proven to be harmful, the company’s SOC team will try to take action to find and delete the malicious e-mail with solutions such as Antivirus, Firewall, EDR, Proxy, and so on. This process takes a long time to do manually, which slows incident response and it cause more damage to the company due to slow response to a incident. Integration with the Incident Responder module provides additional power to manage reported problems and conduct investigations automatically and more efficiently.