Tag: Security Operations and Response

Build an incident response plan, practice implementing it, and orchestrate and automate to make operations more efficient.

Experts Emma Bickerstaffe and Jaime Cowper discuss the evolving security operations center (SOC): What's current, what's new and what's on the horizon?

If you accept that 5G technology comes with three inherent challenges — manageability, the supply chain and usage — then the endpoint protection challenge makes a whole lot more sense.

The security industry does a thorough job of conveying the latest cybersecurity news, albeit sometimes to the detriment of the people whose job it is to set security priorities.

In theory, dealing with BlueKeep should be no different from dealing with other vulnerabilities. Unfortunately, many organizations are lagging in their patch management efforts.

The increasing complexity of the threat landscape has led SOC teams to adopt security orchestration, automation and response (SOAR) platforms to bring their incident response capabilities up to speed.

SIEM tools can help security operations center (SOC) teams detect threats, but what good is threat data without the context analysts need to quickly respond to incidents? That's where SOAR comes in.

Incident response orchestration and automation can help boost the accuracy and efficiency of IR processes and reduce the burden on the understaffed SOC.

When it comes to security metrics, greater accuracy yeilds greater value, but complete context requires a diversity of insights. What if you can't have both?

With constantly evolving threats and a growing skills gap, the cybersecurity industry should consider alternative intelligence to enable the full digital transformation of our organizations.