Originally written for a new Chronicle blog.
As security orchestration, automation and response (SOAR) adoption continues at a rapid pace, security operations teams have a greater need for a structured planning approach.
My favorite approach has been a…
Tag: Security Operations
Global Security News, North America
Microsoft helps prevent lateral movement from compromised unmanaged devices
by Zeljka Zorz •
A new feature in Microsoft Defender for Endpoint can make it more difficult for attackers to perform lateral movement within company networks, as it allows admins to prevent traffic flowing to and from unmanaged devices that have been compromised. Isol…
Europe, Global Security News, North America
Survey Surfaces Need For More Security Collaboration
by Michael Vizard •
A survey of more than 2,000 IT decision-makers and security operations (SecOps) professionals in the U.S., United Kingdom and Australia found lots of room for improvement when it comes to the way cybersecurity and IT operations teams collaborate. The …
Europe, Global Security News, North America
Moving From ‘the log dustbin’ to Effective Security Operations
by Bryan Littlefair •
Guest Blog Post by Bryan Littlefair, CEO Cambridge Cyber Advisers former Global CISO of Vodafone…
The post Moving From ‘the log dustbin’ to Effective Security Operations appeared first on Gurucul.
The post Moving From ‘the log dustbin’ to Effective S…
Global Security News, North America
7 threat detection challenges CISOs face and what they can do about it
by Help Net Security •
Security operations (SecOps) teams continue to be under a constant deluge of new attacks and malware variants. In fact, according to recent research, there were over 170 million new malware variants in 2021 alone. As a result, the burden on CISOs and t…
Global Security News, North America
A checklist to help healthcare organizations respond to a serious cyberattack
by Zeljka Zorz •
How should organizations in the healthcare sector respond to outage due to a serious cyberattack? The Healthcare and Public Health Sector Coordinating Council’s (HSCC) Cybersecurity Working Group (CWG) has released a tactical checklist aimed at h…
Europe, Global Security News, North America
Outside of the SOC: Use Cases not to Underestimate
by Ashlyn Eperjesi •
When it comes to security, organizations are spread thin. Whether they have too much disjointed data or not enough SecOps staff, one of the biggest pain points is a lack of resources to tackle mundane, repetitive tasks. Low-code security automation sol…
Europe, Global Security News, North America, Vulnerabilities
Creating Security Operations That Stay Ahead of Risks
by Kelly Fanthorpe •
It can be easy for security operations to fall into the habit of being simply reactive. When an industry is based on dealing with critical events, reaction is an important component of operations. However, there is also value in the proactive risk man…
Europe, Global Security News, North America
Sophisticated Cyberattacks Pit Security Teams Against the Clock
by Jane Grafton •
When we look at the current threat landscape, we’re seeing attackers turning initial compromises into…
The post Sophisticated Cyberattacks Pit Security Teams Against the Clock appeared first on Gurucul.
The post Sophisticated Cyberattacks Pit Securit…
Europe, Global Security News, North America
Redefining Cyber Defenses for Financial Institutions
by Sanjay Raja •
Cyber threats are 300 times as likely to target the broader financial services industry as…
The post Redefining Cyber Defenses for Financial Institutions appeared first on Gurucul.
The post Redefining Cyber Defenses for Financial Institutions appeare…
Europe, Global Security News, North America
The Most Common SOAR Use Cases
by Nick Tausek •
Security orchestration, automation and response (SOAR) technology has grown in popularity in the security operations industry, and for good reason. SOAR platforms are designed to help SOC teams automatically execute repetitive tasks, such as responding…
Europe, Global Security News, North America
The Benefits of SOAR for your SOC Team
by Ashlyn Eperjesi •
It’s no secret that security operations teams witness a massive volume of alerts on a daily basis. Manual responses are time-consuming and pull analysts away from their growing list of high-priority tasks. It’s essential for the success of your Securit…
Europe, Global Security News, North America
The Benefits of SOAR for your SOC Team
by Ashlyn Eperjesi •
It’s no secret that security operations teams witness a massive volume of alerts on a daily basis. Manual responses are time-consuming and pull analysts away from their growing list of high-priority tasks. It’s essential for the success of your Securit…
Europe, Global Security News, North America
Google Cloud Security Talks Set to Tackle Improving Your Threat Detection and Response
by Dan Kaplan •
As if your detection and response efforts needed any more reminding, the tenuous state of geopolitics has left many security…
The post Google Cloud Security Talks Set to Tackle Improving Your Threat Detection and Response appeared first on Siemplify…
Europe, Global Security News, North America
Anton and The Great XDR Debate, Part 3
by Anton Chuvakin •
TLDR: no, this post still does not contain the Ultimate Answer for XDR, Life and Everything Question. Moreover, I don’t think anything ever will. While we discuss XDR, the market forces change the definitions, vendors pivot away, analysts ponder, custo…
Europe, Global Security News, North America
Emerging Cybersecurity Trends in 2022
by Sanjay Raja •
What are some of the cybersecurity trends we’re seeing emerge in 2022, and certainly leading…
The post Emerging Cybersecurity Trends in 2022 appeared first on Gurucul.
The post Emerging Cybersecurity Trends in 2022 appeared first on Security Boulevar…
Europe, Global Security News, North America
New Paper: “Future Of The SOC: Process Consistency and Creativity: a Delicate Balance” (Paper 3 of…
by Anton Chuvakin •
New Paper: “Future Of The SOC: Process Consistency and Creativity: a Delicate Balance” (Paper 3 of 4)
Sorry, it took us a year (long story), but paper #3 in Deloitte/Google collaboration on SOC is finally out. Enjoy “Future Of The SOC: Process Consiste…
Europe, Global Security News, North America
Stealing More SRE Ideas for Your SOC
by Anton Chuvakin •
As we discussed in “Achieving Autonomic Security Operations: Reducing toil” (or it’s early version “Kill SOC Toil, Do SOC Eng”), your Security Operations Center (SOC) can learn a lot from what IT operations learned during the SRE revolution. In this po…
Europe, Global Security News, North America
SOC Technology Failures — Do They Matter?
by Anton Chuvakin •
SOC Technology Failures — Do They Matter?
img src: https://flic.kr/p/dwWHw5
Most failed Security Operations Centers (SOCs) that I’ve seen have not failed due to a technology failure. Lack of executive commitment, process breakdowns, ineffective workfor…
Global Security News, North America
Security teams need to become more proactive and risk-driven
by Help Net Security •
83% of companies would suffer business damage during the first 24 hours of an outage and thereafter, which comes as no surprise with recent surges in ransomware and other attacks wreaking havoc across IT infrastructures, a Dimensional Research survey r…
Security Vendor News
The Art of Ruthless Prioritization and Why it Matters for SecOps
by Randy Kersey •
The security operations center (SecOps) team sits on the front lines of a cybersecurity battlefield. The SecOps team works around…
The post The Art of Ruthless Prioritization and Why it Matters for SecOps appeared first on McAfee Blogs.
Security Vendor News
The Industry Applauds MVISION XDR – Turning Raves into Benefits
by Kathy Trahan •
Do you usually read what critics say before deciding to see a movie or read a book? We believe these…
The post The Industry Applauds MVISION XDR – Turning Raves into Benefits appeared first on McAfee Blogs.
Security Vendor News
How to Proactively Increase Your Protection Against Ransomware with Threat Intelligence
by Nicolas Stricher •
As Ransomware continues to spread and target organizations around the world, it is critical to leverage threat intelligence data. And…
The post How to Proactively Increase Your Protection Against Ransomware with Threat Intelligence appeared first on McAfee Blogs.
Security Vendor News
Testing to Ensure Your Security Posture Never Slouches
by Prabhat Singh •
How well can you predict, prevent and respond to ever-changing cyberthreats? How do you know that your security efforts measure…
The post Testing to Ensure Your Security Posture Never Slouches appeared first on McAfee Blogs.
Security Vendor News
Finding Success at Each Stage of Your Threat Intelligence Journey
by Nicolas Stricher •
Every week it seems there’s another enormous breach in the media spotlight. The attackers may be state-sponsored groups with extensive…
The post Finding Success at Each Stage of Your Threat Intelligence Journey appeared first on McAfee Blogs.
Security Vendor News
Alert Actionability In Plain English From a Practitioner
by Jesse Netz •
In response to the latest MITRE Engenuity ATT&CK® Evaluation 3, McAfee noted five capabilities that are must-haves for Sec Ops and displayed in the evaluation. This blog will speak to the alert actionability capability which…
The post Alert Actionability In Plain English From a Practitioner appeared first on McAfee Blogs.
Security Vendor News
Miles Wide & Feet Deep Visibility of Carbanak+FIN7
by Carlos Diaz •
In our last blog about defense capabilities, we outlined the five efficacy objectives of Security Operations, that are most important…
The post Miles Wide & Feet Deep Visibility of Carbanak+FIN7 appeared first on McAfee Blogs.
Security Vendor News
What the MITRE Engenuity ATT&CK® Evaluations Means to SOC Teams
by Kathy Trahan •
SOCwise Weighs In When the infamous Carbanak cyberattack rattled an East European bank three years ago this month few would…
The post What the MITRE Engenuity ATT&CK® Evaluations Means to SOC Teams appeared first on McAfee Blogs.
Security Vendor News
McAfee Proactive Security Proves Effective in Recent MITRE ATT&CK™
by Naveen Palavalli •
McAfee Soars with Superior Protection Results Bottom Line: McAfee stopped the MITRE ATT&CK Evaluation Carbanak and FIN7 threats in their tracks within the first 15% of…
The post McAfee Proactive Security Proves Effective in Recent MITRE ATT&CK™ appeared first on McAfee Blogs.