Table of Contents
- Summary
- SOAR Primer
- Report Methodology
- Decision Criteria Analysis
- Evaluation Metrics
- Key Criteria: Impact Analysis
- Analyst’s Take
- Methodology
- About Andrew Green
- About GigaOm
- Copyright
1. Summary
Security Orchestration, Automation, and Response (SOAR) solutions started out as automation and orchestration engines based on playbooks and integrations. Since then, the platforms have developed beyond the core SOAR capabilities to offer more holistic experiences to security analysts, aiming to develop SOAR as the main workspace for practitioners. Additionally, SOAR vendors have gradually implemented Artificial Intelligence (AI) and Machine Learning (ML) technologies within their platform to learn from past events and fine-tune existing processes.