USE CASE
Security automation with Red Hat Ansible Automation Platform
Overview
Red Hat® Ansible® Automation Platform uses playbooks, local directory services, consolidated logs, and external apps to integrate IT security teams and automate their security solutions—investigating and responding to threats in a coordinated, unified way.
Features and benefits
Investigation enrichment
Collect logs across firewalls, intrusion detection systems (IDS), and other security systems programmatically, providing more diverse data to triage activities performed through security information and event management (SIEM) systems.
Threat hunting
Detect more threats in less time by automatically configuring enterprise firewalls to send events and logs to a central database, where security analysts can correlate data and determine how to respond.
Incident response
Collect and analyze historical security events from a wide variety of event and contextual data sources; and respond to new threats faster by automating blacklists, whitelists, and suspicious workloads.
Common language for translation
Give your triage systems more information by collecting logs across firewalls, IDS, and endpoint protection platforms.
Privileged access management
Streamline the rotation and management of privileged credentials to automate the prevention and remediation of high-risk activities.
Team integration
Chain workflows for modular reusability, support local directory services and access controls, and integrate external apps using application programming interfaces.
Red Hat named the leader in infrastructure automation platforms
Forrester Research named Red Hat Ansible Automation Platform the leader in The Forrester WaveTM: Infrastructure Automation Platforms, Q4, 2024—with the highest score in the strategy category.
Customer success stories
Agile Defense built a custom tool on Red Hat Ansible Automation Platform to help customers within the U.S. Department of Defense keep their systems more secure and compliant.
To help meet stringent security requirements, Zoom uses Red Hat Ansible Automation Platform—along with our security technical implementation guides—to deploy Zoom for Government.
To simplify and better automate its public key infrastructure environment, Siemens replaced its legacy automation solution with Red Hat Ansible Automation.
Keep learning
Article
What is security information and event management (SIEM)?
Learn the benefits of SIEM and how automation can streamline threat detection and incident response.
Documentation
5 examples of security automation with Red Hat Ansible Automation Platform
Explores 5 common security use cases that can be automated—and the code behind the processes.
Article
What is security automation?
Learn about the use of technology that performs tasks with reduced human assistance to integrate security processes, applications, and infrastructure.