Security News > 2021 > April > What is operations-centric security?

If you're a security operations center analyst, it might just save your sanity - and your network.

Even if security analysts are savvy or lucky enough to investigate the right alerts and spot an emerging attack, there's no guarantee that they'll be that effective.

Rather than an alert, the company's defence platform generates what it describes as a map of the attack, telling the security analyst the Malop's entire story, in context.

"Most people put data into a lake and then try to process it," Div says, "But we knew that the volume of that data would be too great." The company deals with infrastructure incident data points at extreme scale, and both the volume and velocity of that data is growing.

After spotting these rare chains of behaviour, an operations-centric security approach uses historical data that has been gathered and trained, matching it against known tools and techniques.

It also gives them time to explore other security initiatives such as security policies, architectural rethinks, and the like.

News URL

https://go.theregister.com/feed/www.theregister.com/2021/04/06/what_is_operations_centric_security/