Four Most Common Deficiencies of SOCs

For most of the time, areas that rankle SANS survey respondents the most about SOCs can be addressed with the right combination of planning, policies, and procedures.

The SANS Institute pinpointed the four most common SOC deficiencies in this year’s edition of its annual security operation center (SOC) survey.

The core of these deficiencies can be traced to a familiar source: people, processes, and proper planning and implementation of technology. Let’s take a look at the worst four and what security teams can do about them.

1. Automation/Orchestration

Most SOCs fall back in automation and orchestration because the SOC team is not aware of the processes that should be automated. Company employees are its first line of defense. Start by interviewing SOC personnel to understand their responsibilities and identify repeatable processes, such as evidence gathering during an incident (IP/URL reputation, information, etc.) that are time consuming and easily automated.


Read the entire article here.

What Happens When You Combine SOAR with Existing Security Technologies

Security teams and Security Operations Centers across the industry face many similar challenges, some of which include increased workload, budget constraints, competition for skilled analysts and repeating manual processes.

Managed Security Service Providers (MSSPs) are facing many of these challenges, multiplied by the scale at which they operate.  Enterprises across the globe are increasingly turning to Security Orchestration, Automation and Response (SOAR) solutions to address these growing challenges.

It now seems clear that SOAR is not just a feature. It is actually becoming a critical component of an advanced security program.  Our existing manual processes simply do not scale to the level they must.

Enterprises cannot continue to respond to today’s growing security threats effectively without some level of automation and orchestration.  Gartner predicts that the adoption of SOAR solutions will increase enormously over the next several years.

Read the entire article here.