Trellix announced the integration of Trellix Helix with Trellix Hyperautomation, a new no-code workflow builder designed to automate security processes. This integration aims to enhance operational efficiency for Security Operations Center (SOC) teams by automating investigation and response workflows, ultimately leading to faster threat response and remediation.

The integration enables Trellix Helix to provide AI-powered context across various threat vectors and security tools within a customer’s environment, aiming for increased visibility. The addition of Trellix Hyperautomation, a drag-and-drop workflow builder, allows SOC teams to automate critical security tasks.

The cybersecurity landscape is evolving with the increased use of AI by threat actors, which is enabling cybercriminals to generate exploits and automate attacks more efficiently. This development necessitates that security teams reduce the time between threat detection and response to manage the growing volume and complexity of attack methods. Industry data indicates that more than one-third of Chief Information Security Officers (CISOs) are seeking increased automation to effectively manage their responsibilities.

Rohit Unnikrishnan, Senior Vice President of Product at Trellix, stated, “While AI is lowering the barriers for cybercriminals to conduct reconnaissance and attacks, it’s also improving security operations for the defenders. Trellix Helix with Hyperautomation creates automated security workflows with a true no-code workflow builder, upskilling analysts at every level and strengthening threat defense for our customers.”

Benefits of Trellix Hyperautomation include improved operational efficiency through automated cybersecurity tasks, incident response, and compliance efforts, thereby reducing manual labor. It also aims to upskill analysts by providing no-code, application-agnostic workflows that allow them to build automated processes without coding experience, applicable across different tools and vendors. Furthermore, the system accelerates vulnerability remediation by automating the deployment of patches, software updates, and security policies to endpoints, enabling prompt mitigation of vulnerabilities.

In addition to the Hyperautomation integration, Trellix has rolled out enhancements to the Helix analyst experience. These include more detailed alerts, which group related threats with enriched information to help analysts prioritize critical issues. Faster investigation pivots are facilitated by providing actions for every field within alert details and an enhanced timeline view that allows filtering by severity or source. The system also offers actionable threat intelligence, integrating detailed insights and recommendations directly within alerts to help analysts narrow exposure gaps.

Trellix is a global cybersecurity company focused on redefining the future of the field with a comprehensive, open, and native cybersecurity platform. The company aims to provide organizations with confidence in their operational protection and resilience against advanced threats. Trellix leverages artificial intelligence, automation, and analytics to support over 50,000 business and government customers with responsibly architected security solutions.