Too many alarms and too few security analysts? Think SOAR

2020-03-19 06:50

If each of your security controls is a segment of your overall security strategy, you can't have one segment be an extremely weak one.

The security solutions in your environment, the intelligence sources at your disposal, the infrastructure your company utilizes is going to be constantly changing, and a lot of times those decisions are not made by the CISO. Acquisitions, mergers, and partnerships are driven by the business, which will force the security team to adapt and integrate with a whole variety of security apparatus, and you need to be leveraging a platform that supports the largest variety of integration points but also the most diverse set of use cases because what you need today is not what you'll need tomorrow.

SOAR as a named category by the analyst community was needed to describe an automation solution that organizations could use for security operations, addressing their daily pain points when trying to keep their organizations secure from relentless bad actors.

Now the problem is altering the mindset of security teams from thinking about automation as a specific product unto itself and more of a principle of applied automation across every facet of security.

The SOAR market will continue to evolve in ways that help organizations apply automation and orchestration to every facet of security.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/ghG3z3qsAX0/

#security #soar