The Torq Hyperautomation Platform was recently awarded Best SecOps solution by the 2023 Tech Ascension Awards. We sat down with Torq Co-Founder and CTO Leonid Belkind to discuss why hyperautomation is the future of cybersecurity and how the company is solving critical challenges in SecOps with AI.
Congratulations on being recognized by the Tech Ascension Awards. Could you describe what the Torq Hyperautomation platform does?
The Torq Hyperautomation Platform analyzes cybersecurity incidents and delivers strategic responses through the power of AI. The platform handles manual, time-consuming tasks, such as auto-analyzing cybersecurity incidents, delivering strategic responses and notifying teams about immediate defensive steps – freeing up security professionals’ time to focus on functions that require human expertise and letting automation handle the repetitive and redundant tasks. Torq’s GPT-integrated chatbot answers user requests in real-time, increasing the speed, quality, and accuracy of investigating and resolving security issues. This capability allows any authorized user, no matter skill level, to use natural language to collect insights through security tools and data sources.
What key SecOps challenges is the Torq Hyperautomation platform addressing?
It is no secret that the cybersecurity industry is facing a pressing talent shortage with over 660,000 job openings. It is reported that security operation center teams receive more than 500 alerts a day, contributing to burnout and fatigue. Burnout is not only affecting analysts, but has made its way up to top CISOs. In an environment where pressures to perform are rising due to shifts in business needs and new technology emerging, Torq continues to address the cybersecurity talent shortage and industry burnout head-on with the Torq Hyperautomation Platform, Case Management and Torq Socrates. Torq’s innovations constantly evolve with the cybersecurity industry in order to address cybersecurity professionals’ real needs.
With the Torq Hyperautomation Platform, all security applications work together seamlessly to deploy the most secure and unified cybersecurity postures possible – freeing up time for employees to focus on more strategic activities and provide real-time data and analytics, allowing businesses to make more informed, data-driven decisions.
Torq launched their Case Management feature to the Torq Hyperautomation Platform in order to directly address problems that SecOps has been facing. Torq’s Case Management feature uses AI co-pilot capabilities to propel efficiency and reduce noise and manual investigations by up to 70%. With Case Management, teams are empowered to automate workflows and spend more time on high-level threats.
More recently, research shows that more than 4 in 5 companies admit that they have less than five security analysts or don’t have enough analysts to run the security operations center. Torq Socrates addresses this issue by hyperautomating key security operations activities and is equipped to investigate incidents and provide response accuracy – thus removing the burden from cybersecurity professionals.
Why is hyperautomation the future of cybersecurity?
The immense burnout and fatigue felt by cybersecurity teams have a significant impact across the industry, leaving hyperutomation as the solution. Hyperautomation works to streamline tasks to cut down the time cybersecurity teams are spending on repetitive and redundant functions. With hyperautomation, teams are able to prioritize threats faster, leading to quicker resolution. Automating tasks allows cyber teams to engage in a better work-life balance and time to step back from the “must be on 24/7” mindset.
Not only do cyber teams need to worry less with hyperautomation, but companies can also worry less and be rest assured that cyber threats are being handled. In the future, we will see humans working in tandem with automation tools and as time goes on, these tools will get smarter. Hyperautomation tools learn historical data used to defend future attacks more effectively and faster. Hyperautomation is revolutionizing the way in which we approach cyber threats.
What is the difference between hyperautomation and SOAR models?
The Torq Hyperautomation Platform displaces big-name competitors like Splunk and Palo Alto Networks that rely on outdated SOAR models. SOAR models are antiquated, no longer addressing the rapidly evolving threat landscape. They are only reactionary, with insights about configurations, prevention, and drifting rules and policies only coming up at the point of an alert, still leaving security professionals with manual tasks to complete and more time for attackers to infiltrate systems.
Compared to SOAR models, Torq Case Management fulfills the needs SecOps have been demanding. Torq Case Management boosts efficiency with its AI co-pilot abilities, swiftly assisting SecOps to make accurate decisions by automatically organizing events and signals into contextually enriched cases, organized by severity, priority, and ownership.
How is Torq advancing the cybersecurity industry with AI?
Torq identified a gap and need in the market where automation could be elevated by generative AI with the launch of cybersecurity’s first Tier-1 analysis AI Agent: Torq Socrates. This AI agent hyperautomates key security operations activities such as alert triage, contextual data enrichment, incident investigation, escalation, and response to close 90% of Tier-1 and Tier-2 SOC tickets autonomously – something that previously dragged down already drowning cybersecurity defenders. While many companies talk about integrating AI, Torq has made the leap to apply AI in a way that drives the industry forward.