Posts

IT Operations in the Age of Coronavirus

Coronavirus has been a shock to the system for many IT organizations who are traditionally accustomed to working together in person. When you’re in an office, you can often use informal methods of communication – like swinging by someone’s desk, calling them on their office extension, or even imparting critical information when you run into them in the company cafeteria. And when urgent incidents requiring a real-time response occur, you often have a live network operations center (NOC) you can call into, which is staffed 24/7 with personnel ready to respond to incidents, and to corral necessary people and dial the (few) people who are remote into a phone bridge.

Obviously, that which was possible weeks ago is no longer possible now. The worldwide and sudden mandates from companies and health authorities to make work fully remote have upended all of these processes. What IT organizations need to do today is twofold: automate communication and incident response processes and automate IT tasks.

Automate Communication and Incident Response Processes

IT operations conducted in-person can often mean that operational processes are ad-hoc, with poorly defined chains of communication. In some sense, it’s why NOCs and their phone bridges or war rooms exist: it’s a way to physically assemble people to deal with emergent or unpredictable situations. Without a way to do this, it’s time to invest in establishing standard, predictable workflows that can handle any kind of urgent, real-time operational incident, no matter where your IT staff are. This is especially critical if you’re in one of the verticals like online education or video collaboration services that’s being highly impacted by the current crisis.

PagerDuty has over ten years of experience helping customers to establish consistent, predictable incident response processes, and you can benefit from our knowledge by using resources like our Incident Response Guide.

Automate Daily IT Tasks and Remediate Alerts

Incident response processes generally require some action to be taken on systems or applications in order to resolve that incident. Again, when teams are physically co-located with one another, it’s easy for IT professionals to simply log into systems and perform manual activities such as typing commands and running scripts, and reporting the results of those activities by voice to those team members assembled in a war room or on a conference bridge.

Once teams are remote, this level of ad-hoc task execution will be difficult to perform safely. In some situations, such as with offshore managed service providers, or highly secure environments, employees may not even be permitted to work remotely – so automation of IT tasks is even more critical, to allow incidents to kick off auto-remediation actions, for example. It’s time to define standard automation recipes to achieve common tasks, reducing errors and improving knowledge sharing in a world where IT professionals don’t sit next to each other.

PagerDuty and Ayehu: A Joint Solution for Incident Response and IT Task Automation

PagerDuty and Ayehu, a leading provider of automated IT incident remediation, have teamed up to create a joint solution for IT automation in the context of incident response. You can combine PagerDuty’s six free licenses of PagerDuty Starter (use the code “COVID-19” when signing up) with Ayehu’s five free workflows package. You can connect the two using either custom incident actions from PagerDuty, to initiate Ayehu workflows from a PagerDuty incident, or even incorporate those workflows within a PagerDuty automated response play.

To learn more about how PagerDuty and Ayehu are working together to help you rapidly re-engineer IT processes and improve communications between IT teams during major incidents, please click here.

The Importance of Solid Cyber Security Incident Response – A Reminder

CyberTech Conference a Reminder of the Importance of Solid Cyber-Security Incident ResponseThe Ayehu team recently participated in the annual CyberTech conference. The original purpose of our attendance was to share information about the eyeShare product through networking and interactive demonstrations. What really occurred there, however, went well beyond product demos and handshakes. We came away with an even greater realization of the critical importance of cyber security incident response, and a renewed dedication to helping organizations protect themselves and their sensitive data against would-be attackers.

As we are all well aware, cyber-attacks aren’t going away any time soon. In fact, they continue to increase in frequency while also becoming much more sophisticated. Traditional methods for monitoring and managing incidents are simply no longer adequate. If businesses are to remain secure, they’ll need to arm themselves with a cyber security incident response strategy that leverages advanced technology to match threats head-on.

One thing that struck us as we discussed the topic of security with conference attendees was the surprising number of organizations that still believe a basic monitoring system is enough. This might have been true a decade ago, but not anymore. The fact is, even the most highly-skilled IT department personnel cannot keep up with the volume of attacks that are coming in at an alarming rate. And as we witness in news reports on an almost weekly basis, all it takes is one legitimate threat that slips through to wreak havoc.

Savvy IT leaders recognize that even the best system can have flaws and vulnerabilities. That’s why integration is so important. For instance, we recommend integrating existing monitoring and alert management platforms with an automation tool that provides more of a closed-loop process. This ensures that every incident detected is instantly and thoroughly assessed, verified and prioritized and that the appropriate steps are taken to resolve the situation accordingly. Essentially, automation provides the added level of protection necessary to fortify cyber security incident response.

As part of our ongoing commitment to delivering the highest quality IT process automation products with special attention paid to security, Ayehu has officially joined the Intel Security Innovation Alliance program. As part of this partnership, we will be integrating our IT process automation software with McAfee Enterprise Security Manager™ (ESM). This integration will enable IT professionals to automate and streamline security policy tasks, such as incident response, in a more efficient and effective manner.

As we reflect on all that we learned at this year’s CyberTech conference, we are honored to be playing a role in helping businesses of every shape, size and industry develop and implement cyber security incident response strategies that are both reliable and effective.

Is your plan strong enough to withstand the cyber-attacks that are inevitably to come? The time to get it right is now – before your organization becomes the next victim.

Get started today by downloading your free 30 day trial of eyeShare.





eBook: 5 Reasons You Should Automate Cyber Security Incident Response




AYEHU JOINS INTEL SECURITY INNOVATION ALLIANCE


IT Process Automation Software Integration with Intel Security to Accelerate Cyber Security Incident Response Times; Help Reduce Breach ImpactAYEHU JOINS INTEL SECURITY INNOVATION ALLIANCE

Ayehu Software Technologies Ltd., leading provider of enterprise-grade IT process automation software solutions, today announced that it has joined the Intel Security Innovation Alliance™ partner program.

Under the Intel Security Innovation Alliance program, Ayehu  plans to integrate its eyeShare™ IT process automation software with McAfee Enterprise Security Manager™ (ESM), enabling customers to easily automate and streamline security policy tasks (playbooks) such as incident response, designed to provide more  immediate and reliable defense against detected threats.

Ayehu’s eyeShare™ IT process automation platform accelerates cyber security incident response and resolution while improving security operations efficiency. By integrating its IT process automation software with McAfee’s security information and event management (SIEM) system, Ayehu provides a rule-based workflow engine that extends incident response capabilities. Benefits of cyber security incident response automation include:

  • Cyber security incidents are addressed the moment they appear on ESM
  • Accelerated security response and automatically triggered pre-defined playbook help contain threats before they impact the business
  • Reduced manual and time-consuming security procedures with a digital, closed-loop process
  • Forensics and enriched data provide insight and enable stronger decision making
  • Supporting audit compliance through documented processes

“As cyber security technology goes hand in hand with IT automation, we are continuing to partner with industry leaders like Intel Security,” said Gabby Nizri, Co-Founder and CEO of Ayehu, Inc.  “Ayehu’s deep experience and leadership in remediating IT incidents brings McAfee ESM customers the industry’s most powerful capabilities to more effectively address the increasing speed and volume of cyber security threats.  At the end of the day, we want to help give cyber security professionals the tools to better secure their enterprises by becoming  highly efficient and  extremely knowledgeable.”

“A key goal behind the Intel Security Innovation Alliance program is to accelerate the development of interoperable security products and simplify the integration of those products with complex customer environments,” said D.J. Long, Head of the Security Innovation Alliance at Intel Security.  “We’re thrilled to see Ayehu leverage Intel Security’s investment in its security risk management platform and extend this value to Ayehu customers.”

For more information on automating cyber security incident response, download Ayehu’s  eBook.

About Ayehu

Ayehu provides IT Process Automation solutions for IT and Security professionals to identify and resolve critical incidents and enable rapid containment, eradication and recovery from cyber security breaches.  Ayehu provides customers greater control over IT infrastructure through automation. Ayehu solutions have been deployed by major enterprises worldwide, and currently support thousands of IT processes across the globe.  The company has offices in New York and Tel Aviv, Israel.  For more information please visit www.ayehu.com.

About The Intel Security Innovation Alliance

The Intel Security Innovation Alliance is the foundation of a technology ecosystem designed to assemble the world’s leading security innovations. Working together, Intel Security and its partners aim to deliver solutions more comprehensive than those available from any single vendor. By implementing products designated as McAfee Compatible, mutual customers can enjoy faster time to deployment; lower total cost of ownership; and makes security risk management projects more efficient and effective.

 

PR Contact:

Christy Kemp

Dahlia Public Relations

303-898-3390

ckemp@dahliapr.com

 

Contact Ayehu at: marketing@ayehu.com





eBook: 5 Reasons You Should Automate Cyber Security Incident Response




 

No computer system can be absolutely secure.

Intel, the Intel logo, Intel Security Innovation Alliance, McAfee, the McAfee logo and McAfee Enterprise Security Manager are trademarks of Intel Corporation in the U.S. and/or other countries.