GLIMPS x Mindflow: AI and automation for your SecOps activities

Automation and AI technologies are revolutionizing cybersecurity solutions. IBM’s latest report (Cost of a Data Breach Report 2024) makes the point: the cost of a data breach drops drastically when an organization deploys AI and automation in its threat detection and response process.

We also know that the information generated by AI and machine learning is the second most important factor in reducing the cost of a data breach.

Against this backdrop, GLIMPS has teamed up with Mindflow to take task automation to the next level with its tools.

Mindflow’s GenAI technology coupled with GLIMPS Malware lets you orchestrate threat detection and system monitoring.

Mindflow enables ultra-intuitive creation of automation flows via an accessible NoCode interface, including the ability to design your own workflows from simple prompts.
With over 650 integrations, Mindflow covers a wide range of use cases.

Emails

Automated analysis of incoming emails, including attachments, and subsequent actions (quarantine, notification of security teams).

Example:

In the use case below, Mindflow automates the recovery of the attachment, sending it to GLIMPS Malware Detect for in-depth analysis, and response after investigation:

• GLIMPS Malware analyzes the email and its attachment and determines whether it contains malware, a malicious macro, or other threats.
• If the attachment is not legitimate, Mindflow orchestrates a response that can include deleting the email, blocking the sender, and notifying security teams (via Slack or Teams, for example).

Automatic enrichment of safety alerts

Mindflow automates the incident response workflow:

• An alert is triggered by a security tool such as an EDR or NDR (e.g. Crowdstrike)
• Mindflow retrieves the suspicious file associated with the alert and sends it back to GLIMPS Malware for analysis
• The results are integrated with the alert in the SIEM, enriching the data for better decision-making
• If the file is deemed malicious by GLIMPS Malware, the alert can be escalated to a higher-level team for intervention (via PagerDuty).

Automated file analysis

Mindflow automates the process of analyzing files from various sources and making appropriate decisions:

• GLIMPS Malware mass-scans files sent to Mindflow via a webhook
• GLIMPS Malware determines whether files are clean, suspicious or malicious after analysis
• Depending on the results of the analysis, notifications are sent via Slack, Teams or other communication channel to security teams

Analysis and remediation of files on a Google Drive

Mindflow améliore la sécurité du stockage dans le cloud en surveillant de façon continue les fichiers nouvellement téléversés dans Google Drive et en rationalisant les flux de travail de cybersécurité pour les environnements Google Workspace :

• Newly uploaded files are automatically submitted to GLIMPS Malware for analysis
• After analysis by GLIMPS Malware, if a malicious file is detected, Mindflow automatically deletes it from Google Drive
• Instant notification is sent via Slack, Teams or other communication channel to security teams.

• Ensure continuous protection
• Optimize the efficiency of SOC teams’ work thanks to a streamlined workflow
• Shorten your response time in the event of an incident (Mean Time To Respond)
• Secure your communication channels (internal tools, email, etc.).

About Mindflow

Mindflow is a NoCode automation platform for Cyber & IT teams, taking operational performance to new heights. Thanks to a vast catalog of integrations, it enables intuitive automation of repetitive tasks and fluid orchestration of all their tools, reinforcing cybersecurity posture and governance.

To find out how you can automate your threat detection and response processes with GLIMPS, contact us today and request a demo of our solutions.