| Developers: | BI.Zone (Safe Information Zone, Bison) |
| Date of the premiere of the system: | 2025/07/24 |
| Branches: | Information security |
| Technology: | Information Security Management (SIEM) |
Content |
Main article: Security Information and Event Management (SIEM)
2025
BI.ZONE Cubi Implementation
An AI assistant has been added to BI.ZONE products and services. The company announced this on August 7, 2025. For example, BI. ZONE EDR users can use it to help write SQL queries to the store. Learn more [BI.Zone_TDR_ (Threat_Detection_and_Response)|here]]. As part of the BI. ZONE SOAR product, the AI assistant will help you form alert recommendations and analyze and explain command lines using unique data from BI.Zone Threat Intelligence. Read more here.
BI.Zone SOAR View
BI.ZONE on July 24, 2025 introduced the BI. ZONE SOAR solution to improve SOC efficiency.
The key goal of BI. ZONE SOAR is to speed up SOC processes as much as possible. The tool combines SIEM, EDR and other solutions in a single window, and allows you to coordinate incident response processes.
Among the key features of BI. ZONE SOAR are also alert handling, creating custom ticket types, and configuring incident handling processes. In addition, the tool allows you to set the required SLA and coordinate team efforts throughout the incident lifecycle.
BI. ZONE SOAR are designed for both end customers and MSS providers, adapting to the specifics of the company's tasks and processes. Organizations with their own SOC solution allow you to build a centralized incident management system, within which you can connect various sources for collecting alerts and inventory information, manage the full lifecycle of incidents, configure processes for processing requests and incidents, etc.
MSS providers, holdings and groups of companies can use BI. ZONE SOAR to create a single incident management window for multiple infrastructures, allowing multiple organizations to be served within a single installation. At the same time, all information about tickets and other entities will be strictly divided by tenants: data on incidents of one company will not be available to the rest. In addition, users are able to deploy high-load and fault-tolerant installations, customize and brand the client portal interface, and connect to the BI.ZONE SOC Portal if necessary to interact with other commands.
Шаблон:Quote 'author=noted Maxim Tumakov, Head of SIEM and SOAR, BI.ZONE.
Thanks to integration with the National Coordination Center for Computer Incidents, BI. ZONE SOAR also allows you to build a process for notifying the regulator of detected incidents in accordance with legislative requirements. The solution is included in the unified register of Russian programs.
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |