TMCnet News
Fidelis Cybersecurity Releases The State of the SOC: An Enterprise Study on Threat Detection and ResponseFidelis Cybersecurity, a leading automation detection and response provider, today released the results of a study examining current trends and practices of threat detection and response in enterprise companies. The study, conducted by 360Velocity and Dr. Chenxi Wang, Founder of the Jane Bond Project, found that excessive alerts, outdated metrics, and limited integration lead to over-taxed security operations centers (SOCs). The study was conducted over the span of three months, interviewing security practitioners from enterprise companies in a cross-section of industries: Software-as-a-Service (SaaS (News - Alert)), retail, financial services, healthcare, consumer services, and high tech. The results reveal how different organizations manage SOCs, incident response and threat hunting tasks. "The study findings are only further proof that with a rising threat landscape, continued constraints on both the availability and bandwidth of well-trained SOC analysts, SOCs are increasingly burdened," said Tim Roddy, VP of cybersecurity product strategy. "Organizations need to look at automating common tasks, integrating network visibility with endpoint detection and response, and shifting the focus from identifying signatures and indicators to attacker Techniques, Tactics, and Procedures (TTPs)." As the threat landscape changes and enterprises move to adopt additional layers of defensive technologies, SOCs are being overwhelmed by the sheer volume of alerts and the number of investigations that require their attention. Furthermore, the study, found that in addition to a capacity issue, SOCs are facing a skills gap/training issue, as many organizations struggled to recruit, train, and retain qualified SOC analysts. Other key findings include:
To view the full report, visit: https://www.fidelissecurity.com/resources/state-soc. To hear more commentary and analysis on the survey findings, join the webinar on 4/4 at 11am ET: https://engage.vevent.com/index.jsp?eid=474&seid=17425&code=fidelisA About Fidelis Cybersecurity® Fidelis is the leader in automated detection and response. The Fidelis Elevate platform dramatically improves the effectiveness and efficiency of security operations by delivering comprehensive network visibility, intelligent deception, alert validation, and automated response across networks and endpoints. Fidelis is trusted by the most important brands in the world. See what you've been missing. Visit www.fidelissecurity.com.
View source version on businesswire.com: https://www.businesswire.com/news/home/20180321005117/en/ |