CyberSecurity Automation - PowerPoint PPT Presentation

View by Category
About This Presentation
Title:

CyberSecurity Automation

Description:

As SOC manager and executives work out and develop their security tasks groups, a few things will dependably stay consistent. In particular, the should be reliably centered around identifying, examining and remediating dangers. Read More - – PowerPoint PPT presentation

Number of Views:3

less

Write a Comment
User Comments (0)
Transcript and Presenter's Notes

Title: CyberSecurity Automation


1
CyberSecurity Automation
  • SOC Managers Should CARE About

2
Introduction
  • While a most of us make goals for individual
    change in the New Year, important changes in our
    business lives require more timely arrangement,
    particularly when those progressions require
    spending plans, endorsements and interior help.

3
What Does A SOC Manager
  • As SOC manager and executives work out and
    develop their security tasks groups, a few things
    will dependably stay consistent. In particular,
    the should be reliably centered around
    identifying, examining and remediating dangers.
    However, how you approach those center capacities
    ought to be rethought consistently to keep pace
    with rising dangers and advancements, and to take
    advantage of past learning.

4
Dont Just Correlate Contextualize
  • We've seen a pivot over the past years with how
    SOCs function. Before, SOCs relied upon system
    traffic and log information to give a relevant
    perspective of the system, generally dependent on
    north/south traffic development. SOC managers
    must be centered around how to best apply layers
    all through the earth for compelling guard. Going
    ahead, this implies successfully using endpoint
    location and reaction (EDR) related to different
    advances that feed logs and alarms into a SIEM,
    and after that utilizing security orchestration
    for full logical perception of an assault.

5
Automate Repetitive Tasks
  • After you've secured your association with the
    capacity to all the more adequately track and
    distinguish assaults as they travel through the
    earth, the following consistent advance is to
    computerize parts of this procedure. By applying
    security automation, SOC supervisors can quicken
    their main goal of recognizing and remediating
    dangers, just as enhance in general security
    tasks execution by bringing mean time down to
    distinguish and mean time to react. What's more,
    automation can decrease the general hazard to an
    association by helping security tasks group bring
    down aggressor stay time.

6
Relentlessly Focus on Remediation
  • As a SOC manager, remediation and recuperation is
    the true objective for occurrences that happen in
    the system. Security tasks groups must keep on
    going past disclosure of alarms and work pair
    with occurrence reaction groups to anchor a
    situation. To do as such, custom playbooks and
    runbooks ought to be set up for experts to pursue
    when cautions emerge.

7
Get Serious About Education
  • By a wide margin one of the best regions that a
    SOC manager can put resources into is training.
    Cybersecurity orchestration is certifiably not a
    dormant field and remaining taught about
    developing dangers and strategies is imperative
    as you manage your group in the identification
    and remediation of security occasions.
    Instruction is a standout amongst the most
    incredible assets you can incorporate into your
    financial plan and culture. If you don't prepare
    your examiners, not exclusively will you have a
    less compelling group, however you'll lose them
    to different jobs or associations willing to give
    nonstop learning or confirmations.

8
Conclusion
  • By putting resources into setting, mechanization,
    remediation and training, you are at last
    decreasing your association's helplessness to a
    break. As you conclude your security tasks
    spending plan for 2019, guarantee you dispense
    enough in these four zones to drive your security
    activities group toward more noteworthy
    development, enhanced productivity and higher
    viability.
About PowerShow.com