IBM Cloud Pak® for Security is an open, integrated security platform that provides deep insights into risks and threats across your on-premises and AWS environments now and in the future. You can search for threats, orchestrate actions, and automate responses without migrating your data.

The platform connects SOC and data security teams through case management, orchestration, and automation, bringing threat management and data security teams together for greater visibility and faster remediation. Through open standards and IBM innovations, IBM Cloud Pak for Security enables you to access IBM and third-party tools to search for threat indicators across cloud or on-premises locations.

IBM has contributed open-source technology used in IBM Cloud Pak for Security and forged relationships with dozens of companies through the OASIS Open Cybersecurity Alliance to promote interoperability and help reduce vendor lock-in. IBM Cloud Pak for Security is comprised of containerized software pre-integrated with the Red Hat® OpenShift® enterprise application platform.

This integration enables it to run on premises and in private or public clouds, giving organizations the flexibility to deploy where they choose.
Platform services include:
o Data connection
o Asset enrichment
o Case management
o Orchestration (built on Red Hat OpenShift)
o Automation
o Development tools
Supported tools:
o Security information and event management (SIEM)
o Endpoint Detection and Response (EDR)
o Cloud Repositories
o Data lakes
o Network protection
o Database protection
o Other Data sources