Automated response is pre-configured by the system to respond to and mitigate cyber threats. This means that as soon as the detection system flags incoming communications as malicious, the system responds to the threat without the intervention of security personnel, decreasing response time dramatically to better protect the organization.

Since the security team must first determine if the appropriate response is a threat before it can be configured, only known threats can be mitigated and remediated by most automated response systems. Unless the threat detection system is capable of identifying unknown threats, which in this case, automated response can remediate those as well.