Continuous improvement is crucial in the ever-changing cybersecurity landscape. That’s why we at Intezer are thrilled to introduce a new feature in our Autonomous SOC platform: a real-time feedback mechanism. This simple yet powerful tool allows you to directly communicate with us, ensuring that the results you receive align with your organization’s specific security needs.
Our latest update brings a practical enhancement to the Autonomous SOC, enabling users to provide real-time feedback. This straightforward feature gives users direct influence to enhance the accuracy of our alert assessments for their environment, without the need to send a support ticket or email.
The Power of Thumbs Up/Thumbs Down
Each alert triage page within our platform now includes a “Thumbs Up” or “Thumbs Down” button. This intuitive feedback system empowers you to voice your approval or concerns about our assessments of your endpoint, phishing, and SIEM alerts. Liked an analysis? Give it a thumbs up. Disagree with a triage verdict or investigation finding? Thumbs down lets us know.
Personalized Fine-Tuning for Unique Environments
Regular interaction with this feature is particularly helpful in the initial weeks of implementing our Autonomous SOC. It enables us to refine threat escalation and investigation logic to meet the specific requirements of your team. This process mirrors the onboarding period of a managed SOC, where you would typically provide continual feedback to human analysts. However, with our technology-driven approach, your inputs directly shape the system to cater to your preferences and environment.
Our team takes pride in providing accurate triage results and deep investigation reports for every single alert. Since environments vary between different organizations, this feedback gives us additional “knowledge” to deliver high-quality triage and investigation results that are tailored to your internal systems.
Advanced Behind-the-Scenes Adaptation
Our system leverages a range of techniques to incorporate your feedback. This includes integrating environment-specific rules and exceptions and potentially adjusting our core analysis algorithms. For each organization, we privately index relevant software code used in your environment. This means our system can recognize and adapt to internally-developed software, ensuring even custom solutions are accurately assessed in your cybersecurity landscape.
The Autonomous SOC platform is designed to mimic the expertise of security analysts, but analysts also have to be trained a little differently at each organization. Now we can evolve how we handle alert triage with your direct input in the platform, so you get a tailored experience.
We reached several notable milestones last year, achieving up to 99% accuracy in the identification of false positive alerts and revealing that only 4% of investigated alerts on average required escalation for immediate incident response. We want to ensure that customers with unique environments can quickly get the same high performance and fast ROI after implementing the Autonomous SOC platform.
We take feedback from our users and the accuracy of our results seriously, and this simple feedback feature is one small part of our commitment to addressing resource and talent scarcity in cybersecurity. We encourage you to use this feature, helping us fine-tune our results to better serve your needs.
To learn more, you can visit our documentation or book a demo to learn more about the Autonomous SOC platform.