Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
The widespread shift to remote work in the past year made the attack surface (even more) massive, the amount of data produced staggering, and the number of tools to manage it all mind-boggling, says Dvir Sayag, a cyberthreat researcher at Tel Aviv-based Hunters.
"SOC teams cannot effectively investigate the increasing numbers of alerts and cannot maintain the rules and queries needed to be built to address ever-growing threats," he says. "There must be an effective level of automation that addresses threat intelligence, indicators of compromise, and tactics, techniques and procedures, and prioritizes alerts based on specific knowledge of the environment."
(Image: Superzoom via Adobe Stock)
Joan Goodchild is a veteran journalist, editor, and writer who has been covering security for more than a decade. She has written for several publications and previously served as editor-in-chief for CSO Online. View Full Bio
Tweet This
