Cyber Triage and Demisto Enterprise Are Simplifying and Automating Incident Response

Combining Agentless Investigation with Security Orchestration, Automation and Response (SOAR) Accelerates Response Time

BOSTON and CUPERTINO, Calif., Dec. 3, 2018 — Cyber Triage, simplified incident response, announced a product integration with Demisto, a leader in Security Orchestration, Automation and Response (SOAR). The integration delivers a cost-effective way to automatically collect data as soon as an alert is generated.

Automation is critical to ensuring cybersecurity alerts are properly prioritized and responded to without overwhelming security teams. Cyber Triage allows companies who cannot deploy agents to all of their computers to automatically collect data as soon as an alert is generated.

“Disparate, unconnected environments have led to a lack of visibility, making it tougher for security teams to gather requisite information before executing a response. Demisto’s integration with Cyber Triage provides our users with rich endpoint context in an automated manner, enabling them with relevant information at the right time for severity assignment, further enrichment, and resolution,” said Rishi Bhargava, Co-Founder and VP, Marketing at Demisto.

“Demisto users can now have an agentless security response,” said Brian Carrier, CTO of Basis Technology.  “Many companies do not have the resources to deploy endpoint detection and response (EDR) agents to all of their computers, and Cyber Triage allows them to get the critical evidence on demand.”

Demisto Enterprise integrates with hundreds of security products and enables customers to build playbooks for different security processes. These playbooks incorporate a combination of automated tasks and manual best practices to standardize and scale incident response. Demisto’s playbooks help reduce MTTR (Mean Time to Respond) for security incidents and free up time for security teams to conduct deeper investigations. The platform’s case management and machine learning capabilities also help security teams maintain incident oversight and improve their security posture with time.

Cyber Triage is a cyber forensics tool that collects and analyzes data from endpoints and servers. It makes the analysts more efficient by identifying bad and suspicious items, such as processes and files, and uniting data from multiple sources. It is in use by investigators ranging from Fortune 500 companies to federal law enforcement.

About Demisto

Demisto is the only Security Orchestration, Automation, and Response (SOAR) platform that combines security orchestration, incident management, and interactive investigation to serve security teams across the incident lifecycle. Our orchestration engine coordinates and automates tasks across hundreds of partner products, resulting in an increased return on existing security investments. Demisto enables security teams to reduce Mean Time to Response (MTTR), create consistent incident management processes, and increase analyst productivity. For more information, visit or email

About Basis Technology

Verifying identity, understanding customers, anticipating world events, and uncovering crime. For over 20 years, Basis Technology has provided analytics to solve some of the largest and most challenging problems for major firms and government agencies around the world. It is the primary contributor to the Autopsy open source digital forensics platform, which is used by thousands of users around the world. Its Cyber Triage software simplifies the collection and analysis of endpoint data for incident response. For more information, visit or email