CyberSponse: Smart and Automated Enterprise Security Operations

Joseph Loomis, Founder & CTO, CyberSponseJoseph Loomis, Founder & CTO
Imagine this: After a long day at the office you want to go home and leave your work at work and not worry about the remaining incidents, alerts and investigations currently underway. Sound familiar? Well, think of a platform technology that works just like a human but with no time delays and no deviation from an established incident response process; one that can eliminate the emotion and social factor from the equation, and produce results and metrics to validate its existence. Seasoned serial entrepreneur, Joseph Loomis, Founder and CTO of CyberSponse, identified this problem and the crucial need to save time and eliminate repetitive efforts within the incident response lifecycle. As one of the genuinely first enterprise automation and orchestration platforms combining cybersecurity solutions with human intuition, CyberSponse’s Enterprise and Community platforms are transforming the enterprise security posture.

The Platform creates an impressive ROI by saving time, managing alerts, and improving the efficiency to respond to incidents, alarms or aid in the hunt mission. It accomplishes this by automating and orchestrating security operations with the incident response lifecycle, all together in one enterprise easy-to-use solution. “Human error in cybersecurity is on the rise due to the overwhelmingly increasing number of alerts compounded by ignoring these alerts as false positives or because there is not enough time in the day to remediate them. “Our orchestration Platform allows CyberSponse to replicate human behavior, but at machine speed and streamline the incident response lifecycle through our enterprise automated playbook engine,” explains Loomis.

CyberSponse works as the central nervous system of the security posture of our customer’s security stack both from the machine and human perspectives, from handling time-sensitive incidents and responding quickly to attack vectors, to scanning and blocking email and end-point malware infections, DDOS attacks, and intrusion attempts.

Our vision for CyberSponse is to continue our development efforts towards a fully autonomous security operation center that would need no human interaction other than just monitoring precise machine-driven playbook operations and higher level tier 3 hunt missions


Be it remediation of efforts, incident response, or investigation of alerts; the enterprise solution is the future of cybersecurity.

Launching their new community edition in August, the CyberSponse Platform is delivered via the cloud, on-premise appliance or a hybrid of both, depending on the customer’s configuration. Upon identifying the trends in cybersecurity, Loomis realized that the fundamental problem behind the increasing number of compromises is not the security infrastructure or toolsets, but the lack of organizations’ procedures and processes when it comes to the incident response lifecycle. This understanding led to the inception of IncidentResponse. com—one of the largest open-source and free communities around cybersecurity training and playbook development. The Incident Response Consortium is the first industry-managed as well as community-driven consortium, which focuses on practical customized incident response plan development, operational capabilities, and the training of the skills necessary for effective cybersecurity operations.

CyberSponse itself focuses on Security Orchestration and Automated Response (SOAR) with its security management Platform by offering enterprises the means to stabilize the security environment with mature repeatable processes with their easy to use remediation playbooks.

The company also provides a very specialized professional cybersecurity team named Cyber Team Six. CT6 is a cyber seal team that was formed to assist organizations in remediating or building instant response procedures by deploying need-specific types of solutions that contribute at the national security level. From digital forensics, data breach response, threat hunting and system monitoring, the Team was formed to solve some very complicated and difficult problems with our nation’s most valuable assets. For the future, CyberSponse aims to move ahead along the path of innovation, as the security paradigm is drifting toward autonomous security, free from human interference. “Our vision for CyberSponse is to continue our development efforts towards a fully autonomous security operation center that would need no human interaction other than just monitoring precise machine-driven playbook operations and higher level tier 3 hunt missions,” concludes Loomis.