The app ships with a default set of workflows, and during an incident investigation, security analysts can see the whole chain of threat activity by automatically ingesting threat intelligence from EclecticIQ Intelligence Center.
This tight integration of CTI and SOC operations reduces the mean time to detect (MTTD) and respond (MTTR) by dropping investigation times significantly. With the Cortex XSOAR App for EclecticIQ Intelligence Center, organizations can automate security control integration, create sightings from threat data, and conduct proactive intelligence-led threat hunting, among other benefits.
The integration decreases the mean time to detect, respond, and remediate incidents and achieves powerful threat hunting by automatically correlating high-potential threats with existing IOCs and vulnerabilities.