SecOps

How to Introduce More Empathy into Security Operations

Apr 29, 2021 By Dan Kaplan In Siemplify

Long before he was forced to reconcile his passion for the Boston Red Sox with a new love interest, or became the king of late night, Jimmy Fallon made the “IT guy” famous. As Nick Burns, “Your Company’s Computer Guy,” Fallon expertly (and hilariously) personified the brutish, condescending and dismissive IT admin we all fear, the person with simply no time for their perceived lowly technical knowledge and unsuspecting nature of the average end-user.

Siemplify

Read more about How to Introduce More Empathy into Security Operations

How to Boost Your Playbook Implementation With Siemplify Playbook Simulator

Apr 26, 2021 By Siemplify In Siemplify

Enhance your playbook development process with the Siemplify Playbook Simulator, allowing you to build & test logic, expedite your work and test third-party integrations.

Siemplify

Read more about How to Boost Your Playbook Implementation With Siemplify Playbook Simulator

Adopting a cloud first strategy for modernizing security operations

Apr 21, 2021 By Sumo Logic In Sumo Logic

In this session, Scott Crawford, Research Director with 451 Research, a part of S&P Global Market Intelligence, highlights research on how enterprises are responding to digital transformation. In addition, Girish Bhat, VP with Sumo Logic offers insights for security practitioners on how a ‘cloud first’ approach supports digital transformation, IT rebuild projects and application modernization.

Sumo Logic

Read more about Adopting a cloud first strategy for modernizing security operations

10 Must-Ask Questions When Choosing a SOAR Solution in 2021

Apr 13, 2021 By Nimmy Reichenberg In Siemplify

The adoption of security orchestration, automation and response (SOAR) platforms has grown significantly in recent years. Countless end-user and service provider security operations teams are leveraging SOAR to address the most common security operations challenges – too many disparate technologies, alert overload, limited staff and manual processes.

Siemplify

Read more about 10 Must-Ask Questions When Choosing a SOAR Solution in 2021

How SOAR Helps Service Providers Meet MSSP Challenges: A Conversation With Forrester Research

Mar 30, 2021 By Siemplify In Siemplify

Joseph Blankenship and Chase Cunningham of Forrester Research joined Siemplify for a four-part video series. In the fourth and final part, the pair discusses the role of SOAR for service providers, how they can evaluate their own success, and what selection criteria should look like for end-users shopping for an MSSP – especially in the era of more demanding customers and the death of the “black-box” MSSP model.

Siemplify

Read more about How SOAR Helps Service Providers Meet MSSP Challenges: A Conversation With Forrester Research

Are we forever doomed to software supply chain security?

Mar 26, 2021 By Snyk In Snyk

The adoption of open-source software continues to grow and creates significant security concerns for everything from software supply chain attacks in language ecosystem registries to cloud-native application security concerns. In this session, we will explore how developers are targeted as a vehicle for malware distribution, how immensely we depend on open-source maintainers to release timely security fixes, and how the race to the cloud creates new security concerns for developers to cope with, as computing resources turn into infrastructure as code.

Snyk

Read more about Are we forever doomed to software supply chain security?

Detecting rare and unusual processes with Elastic machine learning

Mar 25, 2021 By Thomas Grabowski In Elastic

In SecOps, knowing which host processes are normally executed and which are rarely seen helps cut through the noise to quickly locate potential problems or security threats. By focusing attention on rare anomalies, security teams can be more efficient when trying to detect or hunt for potential threats. Finding a process that doesn’t often run on a server can sometimes indicate innocuous activity or could be an indication of something more alarming.

Elastic

Read more about Detecting rare and unusual processes with Elastic machine learning

What is a security operations center (SOC)? Explaining the SOC framework

Mar 18, 2021 By Mark Stone In AT&T Cybersecurity

If you’re responsible for stopping cyber threats within your organization, your job is more challenging than ever. The exposure to threats for any organization continues to escalate, and breaches are occurring every day. Consider: If your company doesn’t have a security operations center (SOC), it may be time to change that. In fact, a recent study indicates 86% of organizations rate the SOC as anywhere from important to essential to an organization's cybersecurity strategy.

AT&T Cybersecurity

Read more about What is a security operations center (SOC)? Explaining the SOC framework

Orchestrate Framework Controls to Support Security Operations with Splunk SOAR

Mar 18, 2021 By Kelly Huang In Splunk

Every security team should utilize security frameworks in their strategy and tactics to help reduce risk from common cybersecurity threats. Security frameworks guide organizations on how they should develop, build, and maintain their IT security policies and procedures while sharing best practices for meeting compliance requirements. Healthcare operations in particular are often presented with increasing regulatory scrutiny and obligations that must be met in order to be competitive.

Splunk

Read more about Orchestrate Framework Controls to Support Security Operations with Splunk SOAR

Splunk SOAR Feature Video: Playbooks

Mar 18, 2021 By Splunk In Splunk

Playbooks are the codification of your Security Operations (SecOps) plan. In practice, they’re high-level Python scripts that Phantom interprets in order to execute your mission.