In this session, I’ll walk you through the evolution of SOAR (Security Orchestration, Automation, and Response) and how vendor acquisitions have shaped its trajectory. Once a standalone solution that revolutionized security automation, SOAR is now being integrated into larger platforms, leaving many to question: is SOAR still relevant, or is it time for a new term that better reflects the power of AI and machine learning?

We’ll dive into how AI-driven technologies, such as Agentic Process Automation (APA) and agent-based workflows, could signal the next era of security automation. I’ll discuss whether we need a fresh label for these new advancements, especially with tools that are smarter, faster, and more adaptable to evolving threats.

Beyond the theory, I’ll provide real-world examples of agents that can be used in security automation, and show how they can be deployed within security environments. You'll leave with a short guide on deploying these agents effectively, along with a breakdown of the pros and cons—what works well and what challenges to watch out for.

Lastly, we’ll look at how all of this ties into the bigger picture, specifically how agent-driven automation fits with detection engineering and incident response. Expect to walk away with practical knowledge on how these technologies will reshape security operations, helping us move from reactive to proactive, intelligent security management.