Demisto Integrates with AWS for Seamless Cloud Security Incident Response

First Security Orchestration, Automation and Response (SOAR) Platform to Integrate with AWS Services to Enable Automated Tasks

CUPERTINO, Calif., June 26 2018 Demisto, an innovator in Security Orchestration, Automation and Response (SOAR) technology, today announced integration with Amazon Web Services (AWS) to allow customers to automate tasks across AWS services. As the first SOAR platform to integrate with AWS, Demisto’s keyless, zero-trust model allows for execution sans long-term credentials, allowing users to unify workflows across their cloud and on-premise infrastructure, from one console, in a secure manner.

Through this integration with AWS, Demisto customers are now able to use a single orchestration platform to consume alerts for their cloud infrastructure and coordinate response and operational actions across their cloud and on-premise environments, vastly simplifying their security management solutions. Demisto has ensured maximum ease of use via identity and access management (IAM) roles that orchestrate across AWS products, delivering a streamlined solution that does not require the transfer and management of long-term credentials for various AWS environments.

“Integrating security solutions with key services, such as AWS, has become essential for organizations of all sizes,” said Rishi Bhargava, Co-founder and Vice President of Marketing, Demisto. “This integration enables our customers to consume security alerts for their cloud infrastructure and create playbooks that unify actions across their on-premise security arsenal and cloud infrastructure, all from a single interface. Moving forward, we will continue to make our industry-leading security orchestration solution more robust to meet the ever-changing needs of organizations, providing solutions that reduce, rather than increase, the workloads of their security teams.”

With the adoption of cloud services driving a new wave of security challenges, the influx of a high volume of security alerts poses a problem to cybersecurity teams. Responding to security incidents in such environments can often result in a disconnect between cloud infrastructures and traditional security tools, requiring multiple consoles to coordinate and more time to execute repetitive tasks. With this integration, Demisto customers can automate response and operational tasks across AWS services such as S3, EC3, IAM, GuardDuty, and Route 53, providing them with an efficient, unified solution.

Demisto Enterprise integrates with more than 180 security products and enables organizations to build playbooks for different security operations. Demisto’s solution has helped security operations center (SOC) teams reduce the number of alerts requiring human review by as much as 95 percent. It also solves the ever-growing problem of product fatigue – where analysts need to learn more and more products to mitigate threats throughout their infrastructure. By working in a platform that integrates with all major security products such as security information and event management (SIEM), network, threat hunting, and end-point, it provides a comprehensive view into incident response. For more information, visit

About Demisto

Demisto Enterprise is the first and only comprehensive Security Operations Platform to combine security orchestration, incident management, machine learning from analyst activities, and interactive investigation. Demisto’s orchestration engine automates security product tasks and weaves in the human analyst tasks and workflows. Demisto enables security teams to reduce mean time to response (MTTR), create consistent incident management process, and increase analyst productivity. Demisto is backed by Accel and other prominent investors and has offices in Silicon Valley and Tel Aviv. For more information, visit or email

Demisto Contact:
Lisette Rauwendaal
Lumina Communications

(408) 827-4363