Posts

Automate AWS Tasks in Minutes with Ayehu NG

Whether you use Amazon Web Services for your development and test environment or for your production environment, one of the most common challenges many AWS users face is a frustrating lack of automation. This is where Ayehu can be a game-changer.

Powered by machine learning algorithms, Ayehu’s best-in-class intelligent IT automation and orchestration platform acts as a force multiplier, driving efficiency through a simple and powerful, web 3.0 interface. As an agentless platform, Ayehu is easily deployed, allowing you to rapidly automate tasks and processes, including interoperability across disparate solutions and systems, all in one, unified platform.

Ayehu can now be fully integrated with Amazon Web Services. Organizations working with AWS as their virtualization infrastructure can leverage this seamless integration to optimize the time and resources of the IT department and foster a much more productive, efficient environment.

The AWS integration supports adding out-of-the-box activities for working with instances, images, snapshots and other resources. This allows users to extend and enhance their AWS environment through the advanced automation of workflows.

With Ayehu NG, users can automate a broad spectrum of AWS tasks, such as:

  • Creating and/or resize an AWS EC2 instance
  • Create new images based on existing images
  • Create and restore snapshots
  • Verify image definitions based on best practices
  • Halt development and test instances during non-working hours
  • Provide automated response to AWS alerts
  • Receive instant notification of shortage in resources
  • Achieve automated termination of instances that are past their due date
  • Much more…

Ayehu NG’s automated and accelerated evaluation process via AWS Marketplace facilitates rapid time-to-value for customers seeking to automate their IT tasks in an AWS and hybrid environment. You can see the Ayehu NG AWS integration in action here

Best of all, Ayehu NG is now available free for 30 days via the AWS Marketplace. As an Amazon Machine Image (AMI) that runs in the cloud, the trial version is completely self-contained, including a built-in license, so it is simple and quick to install and configure. You can be up and running, fully integrated and automating AWS tasks and workflows in mere minutes!

Save time on manual and repetitive tasks, accelerate mean time to resolution by 90%, and maintain greater control over IT infrastructure. Start your free trial of Ayehu NG today!

Automating Remediation of Splunk Alerts with Ayehu

Author: Guy Nadivi

Many of our customers use Splunk, the market leader in their space. Due to the large volume of alerts Splunk generates, we often get asked how Ayehu can help offset some of the laborious manual work involved in remediating those alerts. We’re going to answer that question with a great use case many of you will find very familiar – freeing up disk space on a server (with a slight twist).

Remediating low disk space is on our list of top 10 highest value automation use cases. Ayehu can automate the toil out of that particular process using a combination of Splunk, ServiceNow, Slack, and Ayehu NG.

Let’s talk a bit about Splunk. It will come as no surprise to most of you that Splunk continues to be a market leader in its category. Here’s Gartner’s 2020 Magic Quadrant for the SIEM market showing Splunk just edging out IBM as the highest entry in that upper rightmost LEADERS square.

Just in case it’s difficult to read, the y-axis where they’re higher than everyone is a measurement of Ability to Execute.

The x-axis measures vendors by their Completeness of Vision, and Splunk’s doing pretty good on that metric as well.

This is clearly one reason Splunk is viewed as a market leader.

Being a market leader often translates into higher market share. Not surprisingly, Splunk is now #1 in market share with 16.5%. They recently dethroned IBM which is #2 with 13.2%. And rounding out the top 3 is Microsoft with 8.4%.

As of the end of Fiscal Year 2019, Splunk reports 19,400 customers.

According to Gartner, Splunk has an astounding 30.4% growth rate.

And 92 of the Fortune 100 are Splunk customers.

The reason Splunk is doing so well, as a lot of you already know, is because they’re great with machine data.

Splunk captures data, from logs, web servers, and lots of other places. Then it indexes that data to facilitate flexible searching and fast data retrieval. Splunk can then begin to correlate that data, which will often reveal relationships between seemingly unrelated events, and help accelerate root cause analysis. Splunk can also visualize this data into dashboards, graphs, and other outputs.

However, the biggest output from Splunk that most people in IT operations are probably familiar with is the alerts. Boy, oh boy can Splunk generate a lot of alerts!

And you know what that often leads to? Alert fatigue. Let’s face it, prior to the pandemic your service desk was already pretty overwhelmed. Now with the added burden of everyone working from home, they’re having a hard time keeping up.

Just how serious is alert fatigue? I’m going to address that with this brief quote:

‘There are too many security alerts coming in, and not enough people and time to deal with them all. In fact, approximately 64% of security tickets generated per day are not being worked. Let that sink in. The majority of security alerts received by security teams are not being analyzed and resolved. This is the essence of “alert fatigue”.’

And who is that quote from? Splunk themselves. They posted those exact words on their website earlier this year (Splunk Blogs – January 17, 2020).

Now this is a quote specifically about security tickets, but everyone knows it’s the exact same story in network operations where you have alerts flying at you from every direction 24×7.

The solution to alert fatigue, and really the solution to freeing up people from a lot of the laborious, repetitive, predictable tasks that comprise so much of IT operations, is automation.

Automation is going to:

  • Deflect tickets away from your service desk, which in turn allows technicians to focus on higher value projects
  • Reduce and/or eliminate errors which has the added benefit of reducing and/or eliminating rework, an often overlooked but significant drain on resources
  • Save time and money for the service desk, the IT department, and ultimately your organization
  • Almost certainly increase IT’s customer satisfaction scores, which is becoming an increasingly important KPI, in many cases linked directly to individual bonus compensation

BTW, many of you I’m sure are familiar with PwC also known as PricewaterhouseCoopers. They’re one of the Big Four accounting firms and 2nd largest professional services network in the world. Since March of 2020, they’ve been regularly surveying CFOs around the globe to track their sentiments in response to the COVID-19 crisis. In their most recent survey, during the weeks of June 1 and June 8 they asked 989 CFOs from 23 countries or territories around the world about their top priorities going forward.

The response from the CFOs was that “…50% report they plan to accelerate automation and new ways of working.“

So that’s the direction things are going in – automation. Actually, many of you know firsthand it was already going in that direction, but COVID-19 has unexpectedly expedited things.

Speaking of automation, Ayehu doesn’t just automate activities in Network Operations Centers.

Many of our customers use the Ayehu NG platform to also automate activities in their Security Operations Centers.

That makes sense, right? Splunk can send an alert notifying you about low disk space on a network drive, and Splunk can also send an alert that a ransomware attack is underway on a server. In both cases, that alert can come to Ayehu NG, where you can run an automated workflow, or playbook if you prefer, that automates the remediation response.

In fact, when it comes to security, many of the attacks themselves are automated, and there’s simply no way humans can respond quickly enough.

So if the attack is automated, shouldn’t the response to defend against it be automated too?

It should be, and you can automate all these kinds of things for both domains from a single pane of glass with Ayehu NG.

If you’re interested in test driving Ayehu NG and reducing alert fatigue in your organization, please visit our website and click here to download your very own free 30-day trial version today.

How to Run Automated Workflows While Protecting Privileged Accounts

In today’s highly complex security climate, organizations must protect and manage their applications’ privileged identities if they want to protect their assets. Successful Privileged Identity Management (PIM) implementation can be measured by specific factors, such as:

  • Controlling who has access to which credentials
  • Document credential requests for compliance
  • Eliminating hard-coded passwords in applications
  • Eliminating hard-coded passwords in 3rd party tools

Knowing this is critical and actually accomplishing it, however, are two entirely different things. There are many in-house applications and 3rd party tools such as Cyber Security Incident Response Team (CSIRT) automation, IT process automation, and others that run and need access to many servers, PCs, and other devices. The ability of 3rd party tools to access the vault and retrieve the relevant credential information of the specific device is crucial to successful PIM implementation.

Why You Need a Secure Vault

Unmanaged privileged credentials, such as passwords, used by 3rd party tools like CSIRT, are typically stored locally in configuration files, or in a database with little to no control over encryption levels. These credentials can be easily captured and exploited by malicious users or external attackers.

Additionally, any manual changes made to these credentials generally require an update of credentials across all environments, which in turn requires downtime or a maintenance window.

Just one tiny oversight during a manual password change could lock a Windows account, causing all other applications and/or application instances to cease operating. Furthermore, as these credentials are not centrally managed, it is difficult to track who or what has access to them, which makes it nearly impossible to identify whether there may be a potential misuse of credentials by a malicious user or external attacker.

And if you think this type of scenario will never happen to you, think again. One need only peruse the headlines to see that even the most prominent enterprises are vulnerable to potential exploitation.

Take, for instance, web-hosting giant GoDaddy. In May of 2020, the largest domain registrar in the world with over 19 million customers, announced that it had experienced a security breach, which occurred after an employee had their account compromised which allowed hackers access. The number of customers impacted has still not be determined, but the reputational and financial damages to the company cannot be understated. For a smaller firm, such a breach could be irreparable.

Why a Secure Vault Is Not Enough

As GoDaddy and countless other organizations have learned the hard way over the years, cybercriminals are relentless. Their tactics are also becoming more sophisticated by the day. In order to shore up against would-be attacks, business leaders must find a way to fight fire with fire. That is, they must leverage all of the advanced technology available to them. And one of the most effective of these is automation.

Ayehu’s integration with CyberArk Privileged Account Security Solution enables organizations to automatically retrieve and rotate credentials securely stored in the CyberArk Secure Digital Vault. Passwords can be rotated based on the organization’s security policy for all privileged identities.

In addition, the integrated solution combines individual accountability with detailed tracking and reporting on all privileged identity activity, enabling organizations to meet diverse sets of compliance requirements.

Your Chance to See It In Action

In a world awash in cybersecurity threats, malicious use of privileged credentials stands out for its potential to inflict cataclysmic harm upon an enterprise.  Yet in order to carry out tasks such as regularly-scheduled maintenance jobs, IT operations must have access to the privileged accounts on servers, routers, and other devices that require these credentials. 

What’s the best way to protect privileged information without obstructing ITOps from performing the vital work that keeps the lights on, all while adhering to organizational and industry infosecurity compliance requirements?

Please join us on Wednesday July 15th as we demonstrate the integration of Ayehu NG and CyberArk Secure Digital Vault – the industry leading automation and privileged access management platforms.

Click the graphic below or follow this link to register and reserve your spot today: https://info.ayehu.com/how-to-securely-automate-privileged-credentials-usage

Everbridge Announces Integration with Ayehu Software

everbridge ayehu partnership

PR originally published here.

BURLINGTON, Mass.–(BUSINESS WIRE)–Everbridge, Inc. (NASDAQ: EVBG), the global leader in critical event management and incident response automation, today announced the integration of its IT Alerting solution with Ayehu, a leading provider of intelligent automation and orchestration powered by artificial intelligence (AI). The integration is designed to provide Everbridge’s IT Alerting users with key analytical insights to drive continuous improvements in reducing response times to critical events.

“Everbridge is a global market leader of SaaS-based critical communications solutions, trusted by thousands of organizations worldwide. We are excited to partner with Everbridge to customize strategic and intelligent solutions that promote efficiency and agility in the marketplace,” said Gabby Nizri, Co-Founder and CEO, Ayehu. “Our partnership will allow our mutual customers to automate up to 80% of L1 tickets and significantly accelerate critical event processes, freeing up human resources and increasing operational efficiency.”

The combined solution of Everbridge IT Alerting with Ayehu’s platform extends capabilities into IT Process and Runbook Automation (RBA) by leveraging Everbridge’s Smart OrchestrationTM technology. The solution bridges IT Alerting and RBA to allow organizations to quickly engage IT experts and on-call teams so they can respond to critical issues faster, reducing the mean time to fix and automate manual and repetitive tasks, and decreasing the overall time to resolution even further by eliminating the period between receiving an alert and executing the remediation action.

Everbridge IT Alerting enables operational teams to remain fully in control over IT task automation by embedding human decision points within workflows. Using bi-directional communications, one can remotely control the advancement or execution of any step within a process, such as re-starting a server. Remote communications can be performed via SMS, IM, email, or phone.

“By combining Everbridge’s Smart Orchestration technology and self-service integration capabilities along with Ayehu’s platform, we bring the power of AI and analytics to our customers to optimize information flow and to rapidly execute end-to-end incident response management processes,” said Prashant Darisi, Vice President of Product Management, IT Alerting/IoT at Everbridge.

To learn more about Everbridge IT Incident Response Automation, visit www.italerting.com.

About Ayehu Software
Named by Gartner as a Cool Vendor, Ayehu’s IT automation and orchestration platform is a force multiplier for IT and security operations, helping enterprises save time on manual and repetitive tasks, accelerate mean time to resolution, and maintain greater control over IT infrastructure. Trusted by major enterprises and leading technology solution and service partners, Ayehu supports thousands of automated processes across the globe. For more information, please visit www.ayehu.com and the company blog. Follow Ayehu on Twitter and LinkedIn.

About Everbridge
Everbridge, Inc. (NASDAQ: EVBG) is a global software company that provides enterprise software applications that automate and accelerate organizations’ operational response to critical events in order to keep people safe and businesses running. During public safety threats, over 3,800 global customers rely on the company’s Critical Event Management Platform to quickly and reliably aggregate and assess threat data, locate people at risk and responders able to assist, automate the execution of pre-defined communications processes through the secure delivery to over 100 different communication devices, and track progress on executing response plans. For more information, visit www.everbridge.com, read the company blog, and follow on Twitter and Facebook.

To read the original press release, click here.

Webinar: How to Automate Ticket Creation in JIRA Service Desk in Just 5 Minutes

Given the fact that the Atlassian company services some 25,000 customers in more than 122 countries around the world, chances are you’re already leveraging JIRA Service Desk for your IT support needs. The problem is, while JIRA has made a name for itself due to its simple set up and ease of use, what it lacks is a robust workflow automation platform.

What if there was a way that you could leverage automation to manage incidents without writing code and automatically remediate those incidents without the need for manual scripting? The good news is, with the right IT process automation tool, you can successfully do just that, ultimately creating a closed-loop process that makes ticket management easy, efficient and highly-effective. Best of all, you can accomplish this in mere minutes.

Want to learn more?

Join us for our next LIVE webinar during which we will demonstrate how to create a bi-directional integration between JIRA Service Desk and your favorite monitoring system in just 5 minutes.  The resulting integration will not only allow automatic ticket creation in JIRA Service Desk, but will also allow requests submitted through JIRA to be automatically executed in your environment!

The webinar will be presented completely free of charge on Wednesday, March 23, 2016 12pm EDT / 9am PDT.

If you currently use JIRA Service Desk for your IT support service and would like to learn how you can make the entire process better in just a few minutes’ time, you don’t want to miss this free online presentation. But be sure to sign up right away because space is limited. Hope to see you there!

You can register to attend the webinar here.





Webinar: How to automate ticket creation in JIRA Service Desk in 5 minutes?