Cybersecurity In-Depth: Getting answers to questions about IT security threats and best practices from trusted cybersecurity professionals and industry experts.
How Can I Help My Team Manage Security Alerts?How Can I Help My Team Manage Security Alerts?
Smart prioritization, great staff, and supportive tools are a good start.
November 7, 2019
Question: What are some of the things I might be doing to worsen the problem of alert fatigue?
Chris Morales, head of security analytics at Vectra: Security operations must focus on three key areas: detection, response, and prediction. Security analysts must continuously hunt for attackers already inside the network. They need to be able to respond to the threats that can cause real damage immediately and correctly since not all attacks are the same. Finally, an organization needs to be equipped to learn from attacks, understand its own attack surface and exposure, know the type of attacks it is at risk from, and then combine all this knowledge to predict where an attack could happen next.
In short, where is the exposure, what is the motive, where do they need to focus? Doing all the above consistently every day clearly is not easy. Doing all the above quickly while staying consistent to stay ahead of attackers is borderline crazy.
Enterprises have three choices here: Hire lots of highly skilled people able to perform security processes consistently at speed day in and day out, use artificial intelligence (AI) to augment existing analysts to be more effective and automate functions to respond in real time, or give up. I believe the most achievable option is to augment security analysts with AI to scale security operations effectively.
About the Author(s)
You May Also Like
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023
What's In Your Cloud?Nov 30, 2023
Everything You Need to Know About DNS AttacksNov 30, 2023
Human-Centric Security Model Meets People Where They AreDec 07, 2023
Name That Edge Toon: On Your Mark...Dec 01, 2023
10 Holiday Gifts for Stressed-Out Security ProsNov 30, 2023
Cyber Threats to Watch Out for in 2024Nov 28, 2023