This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
No ratings

Cysiv Command Integration

GloriaHigley
Archer Employee
Archer Employee

on ‎2020-01-28 04:26 PM - edited on ‎2022-08-01 04:26 PM by Archer Employee

Cysiv_Logo_300px.jpg
Cysiv Command is a modern security operations and analytics platform. It is the foundation for Cysiv’s threat monitoring, detection, hunting, investigation, and remediation service features. It combines a number of essential technologies and functions into a single platform, leveraging a broad range of advanced data science techniques to automate the time-consuming, complex but essential activities and processes for truly effective threat detection, hunting, investigation, and remediation.

Cysiv Command integrates with the Archer IT & Security Risk Management solution, specifically the Archer Cyber Security & Breach Response use case. Cysiv Command integrates with Archer Security Incidents and Incident Journal applications. This integration provides an ongoing management of incidents and security posture using Archer, while allowing a MSSP (Cysiv) to provide SOC-as-a-Service and SIEM-as-a-Service.

Potential security incidents in Cysiv Command (co-managed SIEM with the end customers) are mirrored to Archer as a means of both informing and interacting with the customer on security investigations. Case details and case comments are mirrored bi-directionally to enable the Cysiv SOC team to use Cysiv Command while customers use Archer. This allows customers of the MSSP services Cysiv provides to track metrics and cases in the Archer Suite, which is important as the customer may have other incidents, cases or GRC activities that are not tracked by Cysiv. Archer acts as the overall security health and performance system for the customer.

Key Features

Cysiv Command Integration enables organizations to:

  • Create a new Archer security incident from a Cysiv Command case
  • Link a Cysiv Command case to an existing Archer security incident
  • Sync Cysiv Command case comments with Archer incident journal entries
  • Sync Cysiv Command case fields with Archer security incident fields
  • Resolve Cysiv Command cases linked to Archer security incidents and automatically trigger Cysiv Command to create a new incident journal entry noting that case has been closed and the reason for closing the case

Solution and Platform Information

Archer On-Demand Application (ODA) Licenses

This offering does NOT require any Archer On-Demand Application (ODA) licenses. 

For More Information

To learn more about the Cysiv Command Integration:

The Cysiv Command Integration is an offering provided through the Archer Exchange to enhance your existing Archer implementation. To learn more about the Archer Exchange, please visit the Archer Exchange on the Archer Community. 

For Additional Support

To learn more about Cysiv LLC, please contact info@cysiv.com or 1.833.229.9800. For technical support questions, please contact support@cysiv.com or 1.833.229.9800.

Was this article helpful? Yes No
0 Kudos
Version history
Last update:
‎2022-08-01 04:26 PM
Updated by:
Archer Employee