ShieldVision™ SOAR Platform

ShieldVision™

Our proprietary tool allows us to provide deep forensic analysis gathered from numerous sources to organize, manage, and collect cyber threat intelligence.

How It Works?

At the very heart of our technology platform is our proprietary software security tool called ShieldVision.

Our platform leverages the most advanced human and technical resources allowing our experts to provide deep forensic analysis garnered from numerous sources across the globe.

ShieldVision is a security orchestration tool that provides a single unified platform for organizing, managing and collecting cyber-threat intelligence. It combines intelligence gathering, rapid automated querying with real-time alerts.

Our comprehensive monitoring tool allows for historical queries to work in tandem with new threat intel. This feature allows our analysts to “go back in time” and check for compromises that may have been missed by other technologies.

Over 77 Million scans completed in 2022. More scans, better protection.

ShieldVision - Lumifi

ShieldVision Client Portal

The Lumifi Client Portal provides you with a transparent view into your Managed Detection & Response Service. Posture, Performance & Historical data is available for customer view. Integration with our ticketing platform allows customers to see open analyst cases, engineering tasks and content requests by priority. Clients are also able to receive an RSS news feed with all of the latest security news and trends in real time.

ShieldVision Orchestration

ShieldVision Orchestration takes threat Intel from various solutions (Mimecast, Cofense, Open Source Threat Intel, & ShieldVision proprietary Intel) into our platform and uses that data to automatically generate scans of customers environments across different platforms for known malicious data.

Automated Investigation at Scale

ShieldVision BackQuery

Reducing response time by automating investigation steps allows for quicker containment and identification of a compromise while also providing client investigations needed for internal teams such as audits, internal management, etc.

Immediate investigation Results

Our BackQuery function can automate investigation steps by querying your environment for malicious TTPs that could be present in a compromise within minutes.

Faster Response Time

The dated SOC implementation without automation takes time to investigate, however, with BackQuery working within minutes, we can reduce SLAs and garner responses from your team as fast as possible.

Contextualized and Enriched Alerting

BackQuery can automatically return results that enhance the detection rules already in place to provide additional contextualized and enriched data to the investigation.

ShieldVision Features

Rapid Automated Querying

SHIELDVision includes automation tools that allow Lumifi analysts to quickly discover important characteristics of a data set and find data-driven insights in the corresponding domain.

Real-time Alerts

Real-time threat analytics and alerting allow you to defend your organization on the front lines against threats including phishing, malware, ransomware and botnets.

Historical Querying

Our analysts are able to look at historical data to reconstruct an environment and provide forensic insights using new threat intelligence.

Threat Identification

Our platform has scanning capabilities via automated technologies and manual hunting by SOC analysts.

Networking Monitoring

Comprehensive networking monitoring including visibility into routers, firewalls, severs, client systems and software.

Forensic Analysis

Our software sources intelligence from global underground networks, active communities, open sources, and our own bright minds at Datashield.

Ready to Get Started?

We’re here to help.

Connect with a professional solutions architect today for expert guidance and consultation!