When we speak with security teams, we are often asked how DTonomy is different.  Here are the questions we hear most often: 

1. Is DTonomy a SIEM? 

No, DTonomy is not a SIEM.  DTonomy is a place for analyzing detections, including those created by SIEMs.  Our customers use DTonomy to dramatically reduce the time it takes for them to analyze the large numbers of alerts and detections they received daily. This is done through the use of DTonomy’s AI-based automated cross-correlation, adaptive scoring, and in-context recommendations.  

2. Is DTonomy SOAR? 

While DTonomy has fully functional SOAR capabilities, and can also integrate with other SOAR platforms, what differentiates DTonomy is its AI-based Pattern Discovery Engine, Adaptive Scoring Engine, and Recommendation Engine. These enable security teams to analyze their alerts and detections in a fraction of the time and then respond as appropriate.  

3. Is DTonomy XDR? 
No, DTonomy is not a native XDR because we do not create raw detections. That said, DTonomy does consume first-tier detections from siloed security detections and correlates them with a unique AI-based correlation engine to provide a holistic view of potential security attacks. So DTonomy is Open XDR.  
DTonomy data sheet summary

DTonomy Uniqueness: 

As a security analytics platform, DTonomy is focused on reducing the cost and effort of analyzing security detections, so security teams can more quickly ignore out false positives and instead focus on the detections that deserve attention.  DTonomy serves as a central place to better analyze your security detections. DTonomy uniquely combines pattern discovery and response capabilities to make your investigations as quick and easy as possible.  

Check out our interview with Safetydetectives from here

We are pleased to announce that DTonomy is now part of Stellar Cyber. The integrated solution will enhance cyber threat detection and response automation!

X