Infoblox’s AI-Powered SOC Insights Cuts Cybersecurity Response Times

Highlights:

• Infoblox asserts that SecOps teams can leverage unique DNS threat intelligence to identify threats that may elude other tools, enabling proactive disruption of adversary infrastructure to thwart threats before they materialize.
• Engineered to empower security analysts to expedite investigations, the AI tool SOC Insights diminishes response times by transforming security events, networks, ecosystems, and distinctive DNS intelligence data into a concise collection of actionable insights promptly, leveraging the speed of AI.

Infoblox Inc., a cloud-native security and networking provider, recently launched AI-powered SOC Insights. This cutting-edge solution leverages artificial intelligence to enhance domain name system detection and response as part of the company’s BloxOne Threat Defense offering.

Engineered to empower security analysts to expedite investigations, the AI tool SOC Insights diminishes response times by transforming security events, networks, ecosystems, and distinctive DNS intelligence data into a concise collection of actionable insights promptly, leveraging the speed of AI, as stated by the company.

Infoblox asserts that SOC Insights surpasses conventional malware risk-based dashboards, enabling cybersecurity teams to minimize mean-time-to-respond by eliminating wasted time by consolidating individual alerts into unique insights. Each insight offers straightforward access to device information, event details, attacker infrastructure data, and Infoblox’s distinct DNS intelligence data. According to the company, this eliminates the necessity for SecOps teams to invest time tracking each alert or relying on NetOps for user and device information to contextualize threat activity.

Leveraging SOC Insights alongside Infoblox BloxOne Threat Defense aids in mitigating critical SecOps challenges, particularly in addressing the escalating complexity of cyber-attacks. Infoblox asserts that SecOps teams can leverage unique DNS threat intelligence to identify threats that may elude other tools, enabling proactive disruption of adversary infrastructure to thwart threats before they materialize.

The AI-powered SOC Insights solution combats alert fatigue by swiftly pinpointing the most critical events, streamlining hundreds of thousands of alerts into more manageable insights. Incident response times are reduced by eliminating the time spent collecting, filtering, and interpreting vast amounts of events, network, and unique DNS intelligence data.

Additionally, it can enhance existing security tools by facilitating the sharing of AI-driven insights containing correlated and filtered data. This enables other tools in the security stack to operate more effectively, further enhancing the efficiency of SOC tools and teams.

Before the announcement, Craig Sanderson, Infoblox’s Vice President of Security and Product Management, stated, “SOC Insights is a game-changer for SecOps, allowing them to focus on what really matters, especially when they’re up against limited budget and resources. At Infoblox, we envision a future where AI-driven analytics and DNS-driven intelligence dramatically elevate SecOps efficiency, with SOC Insights setting the industry standard.”