IBM Resilient Incident Response Platform Enterprise on Cloud delivers orchestrated and automated incident response processes

IBM Europe, Middle East, and Africa Software Announcement ZP16-0544
November 1, 2016

Table of contents
OverviewOverviewTechnical informationTechnical information
Key prerequisitesKey prerequisitesOrdering informationOrdering information
Planned availability datePlanned availability dateTerms and conditionsTerms and conditions
DescriptionDescriptionPricesPrices
Program numberProgram numberAnnouncement countriesAnnouncement countries
PublicationsPublications 


Top rule
Overview
Bottom rule

IBM® Resilient Incident Response Platform (IRP) on Cloud is one of the leading platforms for orchestrating and automating incident response processes. Resilient IRP, a product that was acquired from Resilient, an IBM company, can quickly and easily integrate with your organization's existing security and IT investments to:

  • Make security alerts ready for use near instantly.
  • Provide valuable intelligence and incident context.
  • Enable security teams to help eliminate or streamline critical steps.

Resilient IRP offers a robust response to the daily events that can require actions from your security teams. This is a growing challenge that is shared globally by organizations of all sizes and across all industries. Responding effectively in the face of a cyber crisis becomes harder as the stakes get higher and the actors more sophisticated.

Resilient IRP provides dynamic action plans for many different types of incidents and best practices for responding to virtually all incident types, which include malware, distributed denial-of-service (DDoS), and lost devices. This extensive knowledgebase can help lead your team through the most effective response, while also capable of being customized to your team's standard operating procedures. Team members can quickly access data from more than a dozen, cyber-threat-intelligence feeds and other integrated cyber security and IT systems.

Incident response teams can manage and collaborate on their response directly within the platform. Unlike ticketing systems and other general-purpose IT tools, Resilient IRP is fully configurable and purpose-built for incident response. Comprehensive analysis, customizable dashboards, and robust reporting features can help ensure that senior leadership can access key information when needed.

In May, 2016, IBM acquired Resilient Systems Inc., a leading provider of incident response solutions. With this acquisition, IBM is positioned to provide the industry's first integrated, end-to-end Security Operations and Response Platform offering that spans the entire lifecycle of an attack, from protection and detection to response.



Back to topBack to top

Top rule
Key prerequisites
Bottom rule

Resilient IRP on Cloud requires an internet connection and a workstation with a browser.

For specific browser requirements, refer to the Technical information section.



Back to topBack to top

Top rule
Planned availability date
Bottom rule

November 1, 2016

Availability of programs with encryption algorithm in France is subject to French government approval.



Back to topBack to top

Top rule
Description
Bottom rule

Resilient IRP on Cloud can help automate and orchestrate the processes for dealing with cyber incidents, such as breaches and lost devices. It can enable businesses to respond to a security incident by categorizing the incident and implementing best practices, or playbooks, to respond accordingly.

With a number of integrations with established security systems, which include IBM Security QRadar® SIEM, Resilient IRP can share data and trigger actions within those systems to help:

  • Remediate security incidents.
  • Offer additional context on actionable items.
  • Suggest best practices to help prevent future incidents.

This offering includes a knowledge base of global data breach notification regulations that is maintained and updated by privacy professionals at Resilient, an IBM Company. This knowledge base can be used by team members to help understand breach notification compliance requirements that may apply to a security incident.



Back to topBack to top

Top rule
Reference information
Bottom rule

For information on the IBM acquisition of Resilient Systems, Inc, refer to the IBM News room.

For additional information on Resilient IRP as an on-premise offering, refer to Software Announcements ZP16-0545, dated November 1, 2016, and ZP16-0351, dated June 14, 2016.

For additional information on IBM Security QRadar, refer to Software Announcement ZP15-0120, dated May 26, 2015..



Back to topBack to top

Top rule
Program number
Bottom rule
Program number VRM Program name
5737-C07 SaaS IBM Resilient Incident Response Platform on Cloud


Back to topBack to top

Top rule
Education support
Bottom rule

Not applicable



Back to topBack to top

Top rule
Offering Information
Bottom rule

Product information is available on the IBM Offering Information website.

More information is also available on the Passport Advantage® and Passport Advantage Express® website.



Back to topBack to top

Top rule
Publications
Bottom rule

For product documentation, contact your IBM representative.



Back to topBack to top

Top rule
Services
Bottom rule

Global Technology Services

Contact your IBM representative for the list of selected services available in your country, either as standard or customized offerings for the efficient installation, implementation, or integration of this product.



Back to topBack to top

Top rule
Technical information
Bottom rule

Specified operating environment

Hardware requirements

Resilient IRP on Cloud requires:

  • A workstation that supports one of the web browsers as listed in the Software requirements section
  • A direct, internet connection
Software requirements

Resilient IRP on Cloud requires one of the following supported web browsers:

  • Microsoft™ Internet Explorer V11
  • Mozilla Firefox, latest version for your operating system and ESR 38
  • Google Chrome, latest version for your operating system
  • Safari, latest version for Mac

The program's specifications and specified operating environment information may be found in documentation accompanying the program, if available, such as a readme file, or other information published by IBM, such as an announcement letter. Documentation and other program content may be supplied only in the English language. Such information is provided subject to the following terms. IT system security involves protecting systems and information through prevention, detection and, response to improper access from within and outside your enterprise. Improper access can result in information being altered, destroyed, misappropriated, or misused, or can result in damage to or misuse of your systems, including for use in attacks on others. No IT system or product should be considered completely secure and no single product, service, or security measure can be completely effective in preventing improper use or access. IBM systems, products, and services are designed to be part of a lawful, comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products, or services to be most effective.

Important: IBM does not warrant that any systems, products, or services are immune from, or will make your enterprise immune from, the malicious or illegal conduct of any party.

Planning information

Packaging

This offering is delivered through the internet. There is no physical media.



Back to topBack to top

Top rule
Ordering information
Bottom rule

For ordering information, consult your IBM representative.

This product is only available through Passport Advantage. It is not available as shrinkwrap.

Product Group: Security

Product: IBM Resilient Incident Response Platform on Cloud (5737-C07)

Product Category: Resilient Incident Response Platform


Passport Advantage

Program name/Description Part number
IBM Resilient Incident Response Platform Enterprise on Cloud Instance per Month D1QRILL
IBM Resilient Incident Response Platform Enterprise on Cloud Instance Overage D1QRJLL
IBM Resilient Incident Response Platform Enterprise on Cloud Authorized User per Month D1QRKLL
IBM Resilient Incident Response Platform Enterprise on Cloud Authorized User Overage D1QRLLL
IBM Resilient Incident Response Platform Enterprise Non-Production Environment on Cloud Instance per Month D1QVHLL
IBM Resilient Incident Response Platform Enterprise Non-Production Environment on Cloud Instance Overage D1QVILL
IBM Resilient Incident Response Platform Standard on Cloud Instance per Month D1QRMLL
IBM Resilient Incident Response Platform Standard on Cloud Instance Overage D1QRNLL
IBM Resilient Incident Response Platform Standard on Cloud Authorized User per Month D1QRPLL
IBM Resilient Incident Response Platform Standard on Cloud Authorized User Overage D1QRQLL
IBM Resilient Incident Response Platform Integration Services for Cloud Engagement Remotely Delivered Service D1QRFLL
IBM Resilient Incident Response Platform Design Session for Cloud Engagement Remotely Delivered Service D1QRHLL

Charge metric

Passport Advantage

Program/service name Program number Charge unit description
IBM Resilient IRP on Cloud 5737-C07 Authorized User
    Engagement
    Instance


Authorized User

Authorized User is a unit of measure by which the program can be licensed. An Authorized User is a unique person who is given access to the program. The program may be installed on any number of computers or servers and each Authorized User may have simultaneous access to any number of instances of the program at one time. Licensee must obtain separate, dedicated entitlements for each Authorized User given access to the program in any manner directly or indirectly (for example, through a multiplexing program, device, or application server) through any means. An entitlement for an Authorized User is unique to that Authorized User and may not be shared, nor may it be reassigned other than for the permanent transfer of the Authorized User entitlement to another person.

Note: Some programs may be licensed where devices are considered users. In that case, the following applies. Any computing device that requests the execution of or receives for execution a set of commands, procedures, or applications from the program or that is otherwise managed by the program is considered a separate user of the program and requires an entitlement as if that device were a person.


Engagement

Engagement is a unit of measure by which the services can be obtained. An Engagement consists of professional and/or training services related to the IBM SaaS. Sufficient entitlements must be obtained to cover each Engagement.


Instance

Instance is a unit of measure by which the IBM SaaS can be obtained. An Instance is access to a specific configuration of the IBM SaaS. Sufficient entitlements must be obtained for each Instance of the IBM SaaS made available to access and use during the measurement period specified in Customer's Proof of Entitlement (PoE) or Transaction Document.



Back to topBack to top

Top rule
Terms and conditions
Bottom rule

The information provided in this announcement letter is for reference and convenience purposes only. The terms and conditions that govern any transaction with IBM are contained in the applicable contract documents such as the IBM International Passport Advantage Agreement, the International Passport Advantage Express Agreement, the Cloud Services Agreement and associated Service Descriptions, or the IBM SaaS Terms of Use.

This product is only available through Passport Advantage. It is not available as shrinkwrap.

Subscription

The IBM International Passport Advantage Agreement and the IBM SaaS Terms of Use or the IBM Cloud Services Agreement (CSA) and the Service Description govern your use of this offering.

Technical support

Technical support is provided for IBM SaaS and enabling software, as applicable, during the subscription period. Any enhancements, updates and other materials provided by IBM as part of any such technical support are considered to be part of IBM SaaS or enabling software, as applicable, and therefore governed by the SaaS Terms of Use or the CSA and associated Service Description. Technical support is included with IBM SaaS and is not available as a separate offering.

Refer to additional technical support information in the IBM Software as a Service Terms of Use document for the program.

Terms of Use

The program's Terms of Use and CSA Service Description document is available on the Software as a Service terms website.

Limited warranty

If warranted, refer to the warranty as stated in the Terms of Use document or the Cloud Services Agreement for this offering.

Money-back guarantee

No

Volume orders (IVO)

No

Passport Advantage applies

Yes, information is available on the Passport Advantage and Passport Advantage Express website.

Software Subscription and Support applies

No

IBM Operational Support Services - Support Line

No

Other support

Passport Advantage

System i Software Maintenance applies

No

Variable charges apply

No

Educational allowance available

Education allowance does not apply. Education software allowance does not apply. Special education prices are available for qualified customers through Passport Advantage.



Back to topBack to top

Top rule
Statement of good security practices
Bottom rule

IT system security involves protecting systems and information through prevention, detection, and response to improper access from within and outside your enterprise. Improper access can result in information being altered, destroyed, or misappropriated or can result in misuse of your systems to attack others. Without a comprehensive approach to security, no IT system or product should be considered completely secure and no single product or security measure can be completely effective in preventing improper access. IBM systems and products are designed to be part of a lawful, comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products, or services to be most effective.

Important: IBM does not warrant that any systems, products, or services are immune from, or will make your enterprise immune from, the malicious or illegal conduct of any party.



Back to topBack to top

Top rule
Prices
Bottom rule

For all local charges, contact your IBM representative.


Passport Advantage

For Passport Advantage information and charges, contact your IBM representative. Additional information is also available on the Passport Advantage and Passport Advantage Express website.

IBM Global Financing

IBM Global Financing offers competitive financing to credit-qualified customers to assist them in acquiring IT solutions. Offerings include financing for IT acquisition, including hardware, software, and services, from both IBM and other manufacturers or vendors. Offerings (for all customer segments: small, medium, and large enterprise), rates, terms, and availability can vary by country. Contact your local IBM Global Financing organization or go to the IBM Global Financing website for more information.

IBM Global Financing offerings are provided through IBM Credit LLC in the United States, and other IBM subsidiaries and divisions worldwide to qualified commercial and government customers. Rates are based on a customer's credit rating, financing terms, offering type, equipment type, and options, and may vary by country. Other restrictions may apply. Rates and offerings are subject to change, extension, or withdrawal without notice.

Financing from IBM Global Financing helps you preserve cash and credit lines, enables more technology acquisition within current budget limits, permits accelerated implementation of economically attractive new technologies, offers payment and term flexibility, and can help match project costs to projected benefits. Financing is available worldwide for credit-qualified customers.



Back to topBack to top

Top rule
Announcement countries
Bottom rule

All European, Middle Eastern, and African countries, except Islamic Republic of Iran, Sudan, and Syrian Arab Republic.

Trademarks

IBM, Global Technology Services, Passport Advantage, QRadar, Express and System i are registered trademarks of IBM Corporation in the United States, other countries, or both.

Microsoft is a trademark of Microsoft Corporation in the United States, other countries, or both.

Other company, product, and service names may be trademarks or service marks of others.

Terms of use

IBM products and services which are announced and available in your country can be ordered under the applicable standard agreements, terms, conditions, and prices in effect at the time. IBM reserves the right to modify or withdraw this announcement at any time without notice. This announcement is provided for your information only. Reference to other products in this announcement does not necessarily imply those products are announced, or intend to be announced, in your country. Additional terms of use are located at:

Terms of use

For the most current information regarding IBM products, consult your IBM representative or reseller, or visit the IBM worldwide contacts page

IBM Directory of worldwide contacts