How Tines Helped Us Run Our Service 24/7
What do you like best about the product?
One of the most helpful features of Tines is its ability to reliably process large volumes of data. With Tines, we can easily call out to Elastic Security Alerts and handle hundreds, or even thousands, of alerts daily. It allows us to deduplicate, gather context through APIs like VirusTotal, and significantly reduces the time spent manually creating cases and querying threat intel platforms.
As a developer, the thing that I like best about Tines is the ability to debug if there is a problem or failure, with the 'Logs' and 'Events' sections. I'm able to quickly discern what the issue is and where it lies. As well as the layer of abstractions from coding- making it accessible to all members of the team allowing us to collaborate together. Making note of the 'Automatic Transform Mode' action that allows you to provide an input and prompt, cutting down my developing time.
Finally, the lovely people who work at Tines are constantly listening, giving suggestions and improvements to our story development and making sure we feel that our opinions are heard and listened to. Shout out to Eoin, Paula and Paul!
As a developer, the thing that I like best about Tines is the ability to debug if there is a problem or failure, with the 'Logs' and 'Events' sections. I'm able to quickly discern what the issue is and where it lies. As well as the layer of abstractions from coding- making it accessible to all members of the team allowing us to collaborate together. Making note of the 'Automatic Transform Mode' action that allows you to provide an input and prompt, cutting down my developing time.
Finally, the lovely people who work at Tines are constantly listening, giving suggestions and improvements to our story development and making sure we feel that our opinions are heard and listened to. Shout out to Eoin, Paula and Paul!
What do you dislike about the product?
Tines does have some areas that they could improve on, such as SLAs (which is now currently in motion), user interface refinements, and the need for built-in messaging capabilities from a case for platforms like Teams or Slack instead of us having to build it manually in a story. However, Tines is very open to feature requests, and we’ve seen firsthand how those suggestions have turned into actual product updates- with a quick turnaround. For example, immutable records are now available, and there have been substantial improvements in the UI for cases, including custom case statuses and case fields.
What problems is the product solving and how is that benefiting you?
The key problem that Tines allows us to solve is our lack of time.
Tines enables us to correlate all of this data into a readable case efficiently. It also allows us to tie many platforms we use internally, like Opsgenie, Teams etc and create a chain of communicating with their API's- again saving us the manual time we would've done before and allowing us to operate as a 24/7 vendor. We have built logic that processes alerts raised in Elastic and that is run through our Threat Intel Story which analyses and triages giving us a criticality score. This benefits us by giving us the room to take on more customers.
Tines enables us to correlate all of this data into a readable case efficiently. It also allows us to tie many platforms we use internally, like Opsgenie, Teams etc and create a chain of communicating with their API's- again saving us the manual time we would've done before and allowing us to operate as a 24/7 vendor. We have built logic that processes alerts raised in Elastic and that is run through our Threat Intel Story which analyses and triages giving us a criticality score. This benefits us by giving us the room to take on more customers.