FireEye Bolsters Incident Response Capabilities with Acquisition of Automation and Orchestration Firm
Less than two weeks after snapping up threat intelligence firm iSIGHT Partners for more than $200 million, FireEye announced that it has acquired Invotas International, a privately held provider of security automation and orchestration software.
Milpitas, Calif.-based FireEye said it plans to integrate the security orchestration capabilities from Invotas into the FireEye threat management platform to help customers respond more quickly to attacks and address the shortage of resources by automating the security process and building intelligence into their operations.
Invotas’ technology will help provide customers with the ability to integrate security technologies and intelligence from FireEye and other sources across their infrastructure, the company said. Additionally, by combining orchestration technology and threat intelligence with incident response “playbooks” developed by FireEye’s Mandiant consultants, the company says customers will be able to react faster to attacks.
“The security orchestration benefits for customers are tremendous, including reduced overhead, with less staff chasing alerts, and more efficient security operations, resulting from the automation of incident response processes that are currently manual and often error prone,” said David DeWalt, FireEye CEO and chairman of the board.
As SecurityWeek columnist Danelle Au suggested in a 2013 column, the next big thing for network security is automation and orchestration.
“It may not be sexy, but it will become the key enabler to truly realize the vision of your next-generation data center,” Au wrote.
While automation tools are not going to replace security analysts any time soon, cybercriminals are using automation to fuel their attacks, and savvy defenders must do the same.
Headquartered in Alexandria, Virginia, Invotas has 19 employees that will become part of FireEye. The terms of the acquisition were not disclosed.