Six reasons why todayâs SOCs donât work â and why AI is the fix
SC Media – Gonen Fink
Require too much manpower: Collecting, logging and indexing data for analysis takes a great deal of time, and every moment becomes precious during an attack. Itâs not the fault of analysts, but simply no person could analyze this amount of data in an appropriate amount of time. Are too slow: Todayâs SOC needs a faster response time and introducing artificial intelligence can reduce that response time to minutes rather than days. Have grown too reliant on incremental solutions: Building upon an existing SOC may feel like an easy fix, but in the long run it creates silos and wonât solve the larger issues. Find it hard to manage documentation, processes and procedures: Quite often, processes and protocols arenât regularly updated, or worse, stay stagnant, instead of continuously improving. This Have found that staying compliant causes confusion: Regulations and requirements are constantly changing, especially internationally. Contribute to attrition: In addition to an industry skills shortage, making it difficult to find the right employees, high-stress levels exacerbated by SOC inefficiencies are contributing to further staff turnover.
Link: https://www.scmagazine.com/perspective/emerging-technology/six-reasons-why-todays-socs-dont-work-and-why-ai-is-the-fix