Guidance Software and Demisto Partner to Streamline Incident Response

Guidance Software and Demisto Partner to Streamline Incident Response

Alliance combines endpoint detection and response with automated security orchestration to speed incident response and automate routine security functions

PASADENA, Calif. – March 28, 2017 – Guidance Software, the makers of EnCase®, the gold standard in forensic security, today announced a strategic partnership with Demisto, an innovator in Security Operations Technology. The Guidance and Demisto integration enables customers to orchestrate incident response across multiple security products, saving time, resources, and ensuring forensic-grade remediation of threats.

“Demisto is the critical link connecting our customers’ security infrastructure and teams,” said Rishi Bhargava, Co-founder, Demisto. “Our integration with Guidance enables customers to streamline critical incident response processes to speed final remediation and free resources for other security tasks. We are excited to partner with a market-leader like Guidance and leverage their extensive customer network to bring our comprehensive security operations platform to market.”

Together Guidance and Demisto enable customers to add context to security alerts and automate response and evidence preservation. This partnership also improves visibility into incident response operations with case management capabilities and integrations with IT ticketing and workflow systems.

“The right balance of automation is critical for security teams facing an ever increasing number of threats,” said Guidance President & CEO Patrick Dennis. “Integrating EnCase Endpoint Security with Demisto allows our customers to more quickly and strategically deploy EDR capabilities to detect, triage and remediate threats that bypass perimeter security. Demisto’s advanced security orchestration capabilities will help our customers resolve threats more quickly, while saving resources and improving security ROI.”

To demonstrate the integration and how Guidance and Demisto work together to streamline incident response, the companies will hold a joint webinar on March 29 at 11 am PST. Click here to register for the webinar. The webinar will also be available on-demand after March 29.

EnCase Endpoint Security is the market-leading EDR tool according to Gartner research. With 360-degree visibility into the endpoint, EnCase Endpoint security empowers InfoSec teams to detect sophisticated threats earlier, make faster decisions, and complete forensic-grade remediation to return endpoints to a trusted state.

The Demisto Security Operations Platform enables enterprises to integrate leading threat feeds with Demisto to manage indicators and automate threat-hunting operations, saving time and significantly reducing the risk of exposure. Demisto offers a comprehensive security operations platform with automation playbooks, more than 100 product integrations, incident case management, and threat feed aggregation.

About Demisto

Demisto helps Security Operations Centers increase efficiency, improve incident response times and processes. Demisto Enterprise combines security orchestration, collaboration and threat management to reduce manual work and provide decision support for SOC analysts. At the heart of Demisto’s technology is DBot, a security chatbot that is integrated with dozens of products and understands hundreds of security commands. Demisto is backed by Accel and other prominent investors and has offices in Silicon Valley and Tel Aviv. For more information, visit or email

About Guidance Software

Guidance (NASDAQ: GUID) exists to turn chaos and the unknown into order and the known-so that companies and their customers can go about their daily lives as usual without worry or disruption, knowing their most valuable information is safe and secure. The makers of EnCase®, the gold standard in forensic security, and EnForce™, an automated cyber risk management platform, Guidance provides a mission-critical foundation of market-leading applications that offer deep 360-degree visibility across all endpoints, devices and networks, allowing proactive identification and remediation of threats.

From retail to financial institutions, our field-tested and court-proven solutions are deployed on an estimated 33 million endpoints at more than 70 of the Fortune 100 and hundreds of agencies worldwide, from beginning to endpoint.