API 2.0 Overview API 1.0 to 2.0 Migration Guide What's New
Action Usecase Alerting Usecase Analysis and Response API's Building Search Queries Configuration Backup Restore and Export APIs Enrichment Usecase Groups Usecase Mimecast API In Power BI Secure Email Gateway SIEM Tutorial CG SIEM Tutorial CI SIEM Batch CG Guidelines SIEM Batch CI Guidelines
API 2.0 Reference API 1.0 Reference
Technology Partners
Become a Partner

Devo Security

Developed by Devo Security

Coordinated, Automated and Efficient Incident Response

By integrating Mimecast and Devo, organizations gain search and correlation capabilities to detect and respond to cyberattacks from a central location - No needless pivoting between consoles. Devo combines infrastructure orchestration, playbook automation, case management and integrated threat intelligence to streamline processes and tools.

Developer: Devo Security
Contact: Devo Security
Documentation: View
Release Date: January 2025
Version: 8.14.16
Talk to a Specialist
Get Started

Solution overview

  1. As inbound emails are received by Mimecast on behalf of the organization, they are subject to analysis by the Mimecast inspection funnel, where a series of email hygiene and advanced security scanning techniques are applied, to ensure that emails are safe before they are delivered to the recipient.
  2. Email related data from Mimecast ingested into the Devo SOAR platform to help with analyst investigations.
  3. Coordinate response actions across security tools based on Mimecast data.
  4. Adjust Mimecast policies, search and destroy malicious emails, or prevent future threats.
Devo SOAR Diagram .png

Mimecast + Devo SOAR use cases

Complex Email Threat Investigation

Develop playbooks to quickly pull together contextual data around an email threat discovered in Mimecast and coordinate next step actions to remediate or flag for further investigation.
05BLOG_1.jpg

Automated Email Threat Enrichment

Orchestrate and automate a variety of critical but repeatable Mimecast commands during an incident response to improve response times.
05BLOG_1.jpg

Complex Email Threat Investigation

Analysts gain greater visibility and new actionable information about the attack through integrated Mimecast commands, with documentation per step and artifact reporting.
05BLOG_1.jpg

Threat Intelligence

Unifying aggregation, scoring, and sharing of threat intelligence with playbook-driven automation across the security estate.
05BLOG_1.jpg
05BLOG_1.jpg
05BLOG_1.jpg
05BLOG_1.jpg
05BLOG_1.jpg

Key benefits

01.

Automate email security processes, shorten decision making cycle, and drive resource efficiency through automation.

02.

Enrich intelligence from Mimecast and other security tools for coordinated response.

03.

Achieve full orchestration capabilities using proactive playbooks and workflows.

Back to Top