As Security Operations teams continue to struggle with the challenges around skills gaps, alert volumes, and increasing attack sophistication, automation has emerged as the “silver bullet.” Automation is a must, but it’s a little more complicated than just deploying a tool and taking a nap.
Security Orchestration, Automation and Response (SOAR) tools are garnering interest in enterprise security teams due to its tangible short-term benefits. To achieve these benefits, however, organizations need to understand where best to leverage automation to fit their own operational needs and internal processes; and how to build trust in the automation capabilities.
This webinar, featuring Mike Rothman, Analyst & President of Securosis and Ted Julian, VP of Product Management and co-founder of IBM Resilient, will review common automation use cases for the Security Operations Center (SOC). Attendees will learn:
- How to automate your Incident Response program.
- How to orchestration actions amongst many different tools and demonstrate short-term value
- Additional SOAR use cases beyond Threat Handling and Incident Enrichment