According to the latest SANS survey (to be released as a webcast in two parts on August 14 and 16, sponsored by DFLabs), security operations centers (SOCs) are forced to grow, as they’re pushed by the use of cloud, mobile, personal and Industrial IoT.
There’s a significant discrepancy in the pace of change, and improvements in security operations can’t seem to keep up the galloping SOC evolution. Furthermore, the top barrier is said to be the scarcity of skilled staff that could improve SOC performance. This shortfall will directly lead to issues with metrics and automation.
SANS Analyst and Instructor Christopher Crowley says: “hiring skilled staff is challenging and expensive, while the business culture at most companies is focused on reducing labor costs and shifting to consuming services. SOC managers need to focus on better recruitment and internal talent development processes to meet the challenge of securing appropriate staffing levels.”
Moreover, he adds that organizations should focus on improving metrics in order to better demonstrate the value of their organization. He’s quite optimistic regarding the future of SOCs that focus on “better orchestration both with the network operations center (NOC) and internal to the SOC using orchestration tools to drive consistency.”
The entire article can be read here.