With AuDRA (Autonomous Detection & Response Assistant), says the company, it is the first to apply bot technology to automate the process of creating threat detection playbooks to augment security teams and act as a force multiplier. LogicHub AuDRA is designed to address the challenges faced by security teams that must contend with threats and alerts from dozens of legacy security products, dealing with redundancy, noise, alert fatigue, and huge numbers of false positives, which undermine security effectiveness.
LogicHub AuDRA addresses these challenges, says the company, by applying advanced AI, machine learning, and automation to distinguish threats from millions of security events and take action to stop attacks at machine speed and machine scale.
“Companies across the globe are realizing that they need a different solution to the ever-evolving threat landscape along with a growing staffing shortage,” says Kumar Saurabh, CEO and Co-Founder of LogicHub. “The scale of our environments will only get more complex, with more data, so we need to automate as much as possible.”
The company’s decision automation is built on deep neural net architecture. Expert security analysts can encode advanced techniques and insights into the program, which progressively learns and updates its own logic to make more accurate decisions.
“Decision automation is all about teaching the machine the human-based logic,” says Saurabh. “The program learns, adapts, and improves each day – and then executes hundreds or thousands of times faster than any human possibly could.”
LogicHub AuDRA automates threat detection with:
- An interactive bot-based system that creates playbooks within minutes or hours, instead of days or weeks, based on selections, and feedback from human analysts.
- Interactive machine learning algorithms that capture input from human expertise, while dynamically establishing baselines for granular anomaly detection.
- AI decision automation and factor analysis that can effectively score risk factors, based on human input, across billions of data points, while minimizing noise and false alerts.
The company delivers this advanced threat detection through both its SOAR platform and MDR services.