Cortex XSOAR provides security orchestration, incident
management, and interactive investigation. Overview of Cortex XSOAR
features and concepts.
Cortex XSOAR combines security orchestration,
incident management, and interactive investigation into a seamless
experience. The orchestration engine is designed to automate security
product tasks and weave in human analyst tasks and workflows. Cortex
XSOAR is powered by DBot, which learns from real-life analyst interactions
and past investigations to help SOC teams with analyst assignment
suggestions, playbook enhancements, and best next steps for investigations. With
Cortex XSOAR, security teams can build future-proof security operations
to reduce MTTR, create consistent and audited incident management
process, and increase analyst productivity.