Automating SOC Operations: A Practitioner's Step-by-Step Approach
Even organizations that have a 24x7 SOC are finding it difficult to defend against threats in real time. And with the increasing sophistication in the threat landscape, SOC analysts are often overwhelmed with a deluge of information that instead of assisting the security team impairs it from responding to threats as they happen.
Moreover, finding quality talent to staff your SOC is increasingly a challenge, necessitating going the managed services approach. SOC automation strategies and technologies look at augmenting the analysts' capabilities, making discovery, containment and response closer to real-time than was possible before. In this session, a CISO describes his SOC automation journey, the challenges faced and overcome and milestones ahead.