Tines, a provider of security automation and orchestration solutions, announced a new integration with Synack to address the challenges of traditional security testing by automating Synack’s Penetration Testing as a Service (PTaaS) into overall security operations (SecOps) processes, reducing the need for manual intervention and enabling organizations to quickly close security gaps before they can be exploited.
Integrating Tines’ automation capabilities with Synack’s web, host, API and mobile security testing expertise streamlines exploitable vulnerability detection and response, enhancing overall efficiency.
With Tines, you can act on any action with a defined API. Pre-built templates for Synack API calls are now available to Tines customers, enabling fast and easy automation of Synack workflows. Additionally, Tines automates security workflow tasks such as notification, threat intelligence, ticketing, remediation and patch verification. This automation quickly remediates security gaps efficiently while ensuring accountability and follow-through. Moreover, Tines has pre-built integrations with hundreds of popular security and IT tools, making it easy to integrate into existing environments and SecOps workflows.
Here’s a sample workflow:
- Customers request security testing of an important web application
- Synack testing produces a list and detailed reports of exploitable vulnerabilities
- AI threat intelligence transforms and searches results to identify the most critical and urgent vulnerabilities
- The relevant issue owner is identified, a ServiceNow ticket is opened, and the owner is notified by Slack and email
- Synack recommendations to close the security gap are included in the ticket and routed to the remediation team
- Once remediation is complete, a request is made for Synack to re-test and confirm whether the security gap has been closed
- If yes, the ticket is closed
- If not, the issue is escalated and sent back for further remediation until the problem is resolved
The integration of Synack PTaaS into an end-to-end SecOps flow using Tines Automation offers several benefits:
- Reduces manual steps, increasing efficiency and accuracy
- Automates security testing into overall SecOps, ensuring testing results are acted upon
- Includes sources of threat intelligence to better evaluate criticality and urgency
- Improves remediation time, closing more security gaps before they can be exploited
- Offers a common pre-built point of integration to the tools customers already use
SecOps automation of security testing and remediation is available for joint Synack and Tines customers. Current customers can start here to enable Tines/Synack automation.
If you are not yet a Synack customer, you can click here for a demo. If you are not yet a Tines customer, you can click here to learn more.
