SANS Product Review
Built with AI for the front-line Security Analyst
Force multiply your team’s efforts
Identify and focus your analysts on the most important elements of the investigation and let Advisor automate repetitive SOC tasks.
Drive consistent and deeper investigations
Whether it’s 4:30 pm on a Friday or 10 am on a Monday, Advisor augments human intelligence so that your analysts are driving consistent and thorough investigations each and every time.
Reduce dwell times
Reduce MTTD and MTTR with a quicker and more decisive escalation process. Determine root cause analysis and drive next steps with confidence by mapping the attack to the MITRE ATT&CK model.
Key Features
- Align attacks to the MITRE ATT&CK chain
- Analyst learning loop for a more decisive escalation process
- Enhanced Watson feedback using external threat intel feeds
- Perform cross-investigation analytics
- Priority list of investigations with the greatest risk
- Proactive tuning of your environment for better security
Security and privacy in the cloud
When using IBM Cloud offerings, your company can scale and adapt quickly to changing business needs without compromising security, privacy or risk levels. Learn more about IBM Cloud security
This offering meets the following industry and global compliance standards, depending on the edition you choose.
- ISO 27001
To learn about the compliance and certifications for a specific offering edition, consult the Cloud Services data security and privacy data sheets.
Customer case studies
Ronan Murphy, CEO Smarttech, talks Watson for Cyber Security
Smarttech
Product images
Watson investigations
Cybersecurity knowledge graph
Offense summary
Investigation summary
Testimonials
“ With cyber crime becoming more organized and sophisticated, it is imperative to deploy highly adaptive prevention and response capabilities. IBM’s best-in-class cognitive security portfolio will help us pre-empt threats and mitigate risk. ”
- Rohan Muttiah
- Chief Operating Officer
- Cargills Bank
“ The 24/7 nature of security operations presents a challenge that is costly for most organizations to staff, which is where the appeal of cognitive-enabled security comes in — it never sleeps or fatigues. ”
- Michael Pinch
- Chief Information Security Officer
- University of Rochester
“ There is a massive amount of noise out there; the human brain can’t process everything on a day to day basis – we need something to help, something like AI or cognitive technologies. ”
- Chad Holmes
- Principal and Cyber Strategy, Technology and Growth Leader (CTO)
- Ernst & Young LLP