[2023 First Half Korea Information Security Product Innovation Award] Cybersecurity - SecureLayer 'eyeCloudXOAR'

Six companies, including SecureLayer and OneMoreSecurity, have made it to the finals of the ‘2023 First Half Korea Information Security Product Innovation Award’, competing for innovation and originality.

Hosted by the Ministry of Science and ICT and organized by the Korea Information Security Industry Association (KISIA) and Electronic Times, this award aims to discover and honor innovative information security products based on new technologies and convergence. It was established last year to promote and support the development of new technologies by domestic information security companies.

SecureLayer attracted attention with its business process automation solution ‘eyeCloudXOAR’, which analyzes and responds to data collected from various systems from an information security perspective. Its strength lies in its excellent determinism, allowing for free vertical and horizontal expansion. In terms of vertical expansion, it can integrate with its own AI product line, such as eyeCloud AI, to replace tasks previously performed by humans in analysis and operations. For horizontal expansion, it can integrate data and tasks from the fields of information security, operations, and physical security, enabling analyses and responses that were previously impossible.

SecureLayer showcased its business process automation solution ‘eyeCloudXOAR’, which analyzes and responds to data collected from various systems from an information security perspective.

'eyeCloudXOAR' is developed based on core technologies in big data and information security, featuring △‘real-time distributed processing’ for large-scale data based on clustering △a ‘hybrid analysis tool’ with no restrictions on the analysis subject or method △the MITRE ATT&CK Navigator, which automatically collects and manages information from the global standard threat information classification system, the MITRE ATT&CK Matrix, and presents defense technologies according to attack flows. It has been implemented in various sectors such as public, defense, finance, and telecommunications, where its performance and functionality have been recognized.

The eyeCloud framework consists of three layers: △the eyeCloud platform responsible for big data collection and storage △the eyeCloud application (App) based on the big data platform △the eyeCloud model (Model), which is the content used by application software, including integrated security monitoring (SIEM) rule sets, security operation automation (SOAR) playbooks, and artificial intelligence (AI) models. eyeCloudXOAR is a product of the ‘extended SOAR’ concept that integrates SIEM and SOAR among application software apps.