Secuirty Orchestration, Automation and Response

Abstract

Application security has become an inseparable part of Information Security. Now a days organizations develop application for internal use as well as for selling it to the customers. These applications store a huge amount of data which would be of utter importance to the organization or an individual. Securing this information is important as most of the applications would be accessible by the means of internet. There are various Enterprise tools that help detect vulnerability in the application. One of the method used to detect vulnerability is Static Application Security Testing. Here the source code of the application is scanned and based on this, the vulnerability would be detected. Another method is Dynamic Application Security Testing. Here the tool behaves as an attacker and performs analysis to find out the vulnerability. These vulnerabilities should be resolved in order to make the application and in turn the organization's data secure. Every organization has a policy defined in order to make sure that the information that an application processes is secure. For this purpose SOAR tool comes handy. Whenever an application goes on the non-compliant side of the policy, certain steps are required to be taken in order to make them compliant with the organization's policy. If human efforts are used for this it would be very time consuming task and also less efficient. This is where SOAR comes into place. SOAR monitors application scan results and sends out automatic alerts to the concerned set of people if the application is not compliant with the policies defined in the tool. Thus in order to make sure the applications in an organization are compliant, SOAR is used.