At aaZoo we have been working on integrating our security tools and see if we can get more automation done on our SOC. Automating responses to detections enables us to quickly respond to threats and contain affected machines.

My colleague Mauritz van Gelder made a great video demonstration our integration between Flowmon Anomaly Detection System and Cisco Identity Services Engine. I wrote a small blog about that which was published on the Flowmon webpage earlier this week.

The article is found here: https://www.flowmon.com/en/blog/prevent-malware-spreading-cisco-ise-flowmon-ads

The accompanying video: