API 2.0 Overview API 1.0 to 2.0 Migration Guide What's New
Action Usecase Alerting Usecase Analysis and Response API's Building Search Queries Configuration Backup Restore and Export APIs Enrichment Usecase Groups Usecase Mimecast API In Power BI Secure Email Gateway SIEM Tutorial CG SIEM Tutorial CI SIEM Batch CG Guidelines SIEM Batch CI Guidelines
API 2.0 Reference API 1.0 Reference
Alliance Partners
Become a Partner

Palo Alto Networks Cortex XSOAR

Developed by Palo Alto Networks

Coordinated, Automated, and Efficient Incident Response.

By integrating Mimecast with Cortex XSOAR, organizations gain search and correlation capabilities to detect and respond to cyberattacks from a central location - No needless pivoting between consoles. Cortex XSOAR is the perfect ally for security analysts, through a machine learning-powered platform which provides guidance based on past incidents and analyst actions, accelerates playbook development, and enables leaner, more efficient security operations.  
Developer: Palo Alto Networks
Contact: Palo Alto Networks
Documentation: View
Release Date: June 2024
Version: 2.3
Talk to a Specialist
GET STARTED

Solution Overview

1. As inbound emails are received by Mimecast on behalf of the organization, they are subject to analysis by the Mimecast inspection funnel, where a series of email hygiene and advanced security scanning techniques are applied, to ensure that emails are safe before they are delivered to the recipient.

2. Email related data from Mimecast ingested into the IBM Security platform to help with analyst investigations.

3. Coordinate response actions across security tools based on Mimecast data.

4. Adjust Mimecast policies, search and destroy malicious emails, or prevent future threats.

  • Palo Alto Networks Cortex XSOAR
  • Palo Alto Networks Cortex Demisto
  • Palo Alto Networks Cortex XSOAR
  • Palo Alto Networks Cortex Demisto

Mimecast & Palo Alto Cortex Use Cases:

Coordinated response aiding in:

Automated Email Enrichment

Orchestrate and automate a variety of critical but repeatable Mimecast commands during incident response to improve response times.

Complex Email Threat Investigation

Analysts gain greater visibility and new actionable information about the attack through integrated Mimecast commands, with documentation per step and artifact reporting.

Alert Prioritization

Increase efficiency and effectiveness by prioritizing the most pressing threats.

Threat Intelligence

Unifying aggregation, scoring, and sharing of threat intelligence with playbook-driven automation across the security estate.

                                               Key Benefits

01.

Automate email security processes, shorten the decision-making cycle, and drive resource efficiency through automation.

02.

Enrich email and network security threat intelligence with Mimecast and other security tools for coordinated incident response.

03.

Reduce email-threat alert fatigue and speed-up incident response with full orchestration using proactive playbooks and workflows.

Related integrations

 
Wildfire
Cortex XSIAM
Back to Top