Security News > 2021 > May > Why threat hunting is obsolete without context

Threat hunting is one of the more recent methodologies implemented by IT professionals to find dormant or active threats on their network to better understand and harness network visibility and threat actor entry points.

Although threat hunting's proactive appeal has made it an increasingly popular practice to secure networks, its success is only as valuable as the contextual information gathered within the network the threat was found in, which inherently requires a more sophisticated, comprehensive approach to threat detection and identification.

With companies eager to invest in threat hunting training for their respective security teams, implementing a clear deployment and upkeep strategy for such a deliberate security effort should be a top priority.

Automation, responsiveness, data analysis and threat management are four key capabilities of a larger, modernized SOC that aims to effectively add threat hunting to its arsenal of tools.

Intelligent automation can supplement threat hunting efforts managed by personnel, adding an additional layer of security analysis that could easily be overlooked otherwise.

A powerful combination of security automation with threat detection and response, in conjunction with a relationship focused MSSP, can make threat hunting far more useful than relying on one-off predictions devoid of context.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/F6BaSiB0aR0/