Malwarebytes Integrates With ServiceNow to Streamline the Incident Response Process
Malwarebytes’ endpoint security solutions’ cloud integration with ServiceNow simplifies the security deployment process by streamlining and documenting the entire incident response process in ServiceNow’s Incident Response console.
Incidents from Malwarebytes Endpoint Protection initiates ticket creation in the ServiceNow console. Leveraging Malwarebytes’ threat intelligence engine, business impact of the incident is assessed and risk severity scores are assigned, resulting in a prioritized list of incidents requiring further action. Through the console, automated remediation is triggered and orchestrated from ServiceNow security policies and workflows and Malwarebytes Incident Response technology, overall minimizing the level of manual effort required of IT staff.
Source: Malwarebytes
Our Take
Malwarebytes and ServiceNow work symbiotically together to coordinate response efforts so that incidents can be remediated quickly. Together, they offer automated security orchestration and a reporting medium from a single console, reducing the complexity and time associated with having to consolidate and manage information from two tools separately. The feature offers a significant advantage to clients who struggle to concurrently update and communicate the status of tickets across incident responders as the incident is ongoing. In my experience, this is one of the top “next steps/improvements” for my clients to take away from a security incident management workshop engagement. I can only hope that similar integrations happen in the future to enhance the incident response process.
Want to Know More?
Develop and Implement a Security Incident Management Program
Debunk Machine Learning Endpoint Security Solutions