We're proud to be named a 2024 Publisher's Choice winner!

We're an RSA Conference 2024 Innovation Sandbox Finalist!

We’re proud to release Investigation Workbench, a first-of-its-kind cyber solution that provides instant clarity on all multi-cloud and Software-as-a-Service (SaaS) activities through a single pane of glass. This innovative capability further enhances Mitiga's IR2 Platform, the industry’s only complete cloud investigation and response automation (CIRA) solution.

At a moment when the Securities and Exchange Commission (SEC) is requiring public U.S. companies to report material cybersecurity incidents within 4 days, enterprises are also facing prevalent, damaging, and sophisticated cloud and SaaS incidents. An advancement like Investigation Workbench is invaluable to ensure enterprises have the capabilities required to respond.

“Incident response readiness is a critical step in achieving cyber resilience,” said Dave Gruber, Principal Analyst, Enterprise Strategy Group. “Our research ranks cloud as the top priority for detection and response, which indicates that many organizations still lack the visibility and data needed to rapidly investigate, understand, and respond to attacks within cloud and SaaS applications and infrastructure. Mitiga is helping organizations close this gap with tools like Investigation Workbench and its IR2 Platform that continuously capture, organize, and query forensics-grade cloud data at scale, augmented further by insights from Mitiga's cloud and SaaS IR experts. Incident response can be a slow arduous process in the cloud, and Mitiga is helping simplify and accelerate it.”

Using Mitiga’s Investigation Workbench, Security Operations Center (SOC) teams can see chains of events across vast cloud and SaaS estates to understand the extent of the activities and impact without possessing deep cloud and SaaS investigation expertise. Determining materiality in a short span becomes not only viable but remarkably simpler, empowering internal Incident Response (IR) and SOC teams in a whole new way. They can now quickly decide which cloud and SaaS incidents they can effectively manage in-house, and which larger incidents demand both disclosure and additional support and expertise to contain.

"Since inception, Mitiga has been dedicated to helping organizations proactively prepare for cloud and SaaS attacks so they can respond immediately and get back to business as usual,” stated Tal Mozes, co-founder and CEO, Mitiga. “We enable a level of resilience for modern enterprises that traditional methods can’t. The majority of the industry is playing catch-up, only now understanding that incident response in the cloud and SaaS requires new capabilities to deliver faster response times, reduced investigation overhead, and continuous breach detection. Investigation Workbench builds off our important industry research, helping companies combat today’s sophisticated threats. Not only does it take the market to a new level by removing complexity for internal IR and SOC teams—enabling them to quickly understand an incident and take immediate action to minimize downtime—but it also furthers our leadership position in this emerging CIRA space.”

Investigation Workbench can be used in any situation where there is a need to investigate cloud or SaaS activities, including a security alert, suspected phishing incident, or unusual user behavior, to understand exactly what happened. For example, if a user has been phished, Investigation Workbench can be used to see what actions the user took after the phishing incident. It provides an automated timeline of activities, allowing security teams to assess whether the user downloaded files, read certain emails, or performed other actions that could indicate a security breach. With Investigation Workbench, organizations can swiftly determine whether an incident is minor and can be managed internally or if it's substantial and necessitates further expert intervention.

“2023 has been a tremendous year for Mitiga,” said Mozes, “and we’re so pleased to end the year with the availability of this innovative solution.”


May 4, 2024

See cloud and SaaS activities clearly. Learn more about Investigation Workbench.

Don't miss these stories:

Mitiga Wins Global InfoSec Award for Cloud Threat Detection Investigation & Response (TDIR)

We’re proud to report that at the open of today’s RSAC24, Mitiga was awarded the Publisher's Choice Cloud Threat Detection Investigation & Response (TDIR) from Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine.

Here's Why Traditional Incident Response Doesn’t Work in the Cloud

Traditional incident response (IR) learned from on-premises investigations doesn’t work in the cloud. Today's threat actors are finding misconfigurations and vulnerabilities to allow them to penetrate cloud environments.

Why Did AWS Replace My Role’s ARN with a Unique ID in My Policy?

After several years of working with AWS, IAM remains one of the most frequently used services in my daily routine. Yet, despite my familiarity with it, a recent production incident taught me that there’s always more to learn.