MSSP 250 company RSM US has signed on with cybersecurity vendor Torq for its AI-first cybersecurity hyperautomation platforms.
Todd Willoughby, director of security transformation at RSM US LLP told MSSP Alert that RSM was looking to consolidate its tool sets and to orchestrate and automate its workflows to serve its growing customer base of global mid-market customers — companies that have a $50 million to $1 billion valuations.
The team performed a series of proof of concepts and chose Torq for a few key reasons including scalability of architecture on the back end and hyperautomation, “which is something that Torq is doing to disrupt the industry right now,” Willoughby told MSSP Alert.
“Torq is combining traditional things we’ve been using in SOC architectures like machine learning, robotic process automation and no-code/low-code platforms, and then putting artificial intelligence on top of that to accelerate MSSPs like ourselves over here at RSM to be more agile.”
He said that expeditious delivery of services then returns value to customers who might not necessarily be able to afford such advanced technologies by themselves but can now do so through RSM and Torq.
Willoughby said RSM uses Torq to help augment the company’s existing solutions which include technologies from several vendors. For instance, Torq orchestrates automations between Stellar Cyber and SentinelOne with autonomous SOC platform Intezer to provide outputs to Torq to further orchestrate our workflows — things like updating cases and tickets, allowing our analysts to do better and deeper investigations, or providing feedback to clients directly out of the Torq platform for them to take action themselves.
The efficiencies gained have demonstrated significant ROI, Willoughby said, something that RSM realized just a few days into its proof of concept (POC) with Torq.
“These systems (like Torq’s) aren’t necessarily inexpensive, but they are necessities in today’s modern SOC platform,” he said. “Being able to show our leadership, ROI and how we’re delivering value to our clients was extremely important.”
Torq Introduces HyperSOC
Torq’s VP of MSSP sales Christopher Federico told MSSP Alert that Torq defines “hyperautomation” as the ability to craft automation strategies quickly — moving at a pace that goes from days to minutes or hours. Torq has offered this capability for the last four years and in the last two months has released HyperSOC, an AI-driven SOC solution to help reduce SecOps alert fatigue, false positives and staff burnout. Federico said the HyperSOC includes three core capabilities. They are the following:
- Hyperautomation, which allows analysts to build workflows and get to apps.
- Case management, where an SOC team can manage the entire security case lifecycle end-to-end.
- The AI-based virtual analyst called Socrates.
Willoughby said that RSM is leveraging all these capabilities from Torq.
