Category: Security Orchestration and Automation

Much like the legitimate economy, the cybercriminal marketplace experiences ebbs and flows. Current factors working against it include the ripple…

With all the acronyms floating around in cybersecurity, it is easy to get confused by what means what. Security information…

A successful response to a cybersecurity crisis scenario requires having a central integration hub where incidents are managed by security…

As more and more employees have transitioned to working remotely, the cybersecurity threats that their organizations face have changed. While…

When stay-at-home orders came down for much of the world in March, few businesses were spared the consequences of trying…

  Today marks a big day for Siemplify with the official launch of Siemplify Cloud – the cloud-native security operations…

(The following is a guest post written by Alissa Knight, an ethical hacker, entrepreneur and author.) Is your SIEM or…

IT infrastructure is more complex and interconnected than ever. For attackers, this provides a gold mine for easy attack vectors….

Automation did not enter popular lexicon until the 1940s, when Henry Ford introduced an official “automation department” at his Michigan…

In the context of cybersecurity, incident response refers to the tools, processes and methodologies that businesses use to respond to…

As the frequency and severity of data breaches continues to increase, and users become more concerned about privacy and the…

Even as many SOC teams have shifted to remote operations in recent weeks, the basics of their mission are unwavering:…

(The following is a guest post written by Alissa Knight, an ethical hacker, entrepreneur and author.) The average lifespan of…

The widespread coronavirus-forced lockdown is unlikely the first time security operations teams have had to temporarily migrate away from physically…

  Your security operations relies on people, of course, but it also fundamentally leans on processes and technology to succeed….

Security operations is a well-established discipline — many businesses have even had SecOps strategies in place for decades. Yet the…

On average, 800 attacks per hour pummel 76 U.K. councils, according to global insurance firm Gallagher. That volume of attacks…

Siemplify Technical Account Manager Arnaud Loos builds on his “Open-Source SOC” whiteboard video with a deep dive into the Malware…

The coronavirus pandemic is reshuffling our priorities and changing life as we know it, and with the climax of the…

The managed security services market is booming. If you have recently joined this hot marketplace, congratulations, it is an exciting…

  Siemplify Technical Account Manager Arnaud Loos is back with another whiteboard, this one building on his previous discussion around…

A security operations center (SOC) is responsible for preventing any cybersecurity breaches in an organization’s network. This huge undertaking involves…

When you hit the couch to binge a new TV series, the last thing you’re likely thinking about is that…

I quit my job because of burnout Burnout can hurt your heart, literally Is burnout actually a form of depression? …

As security operations centers (SOCs) broaden their implementation of security orchestration, automation and response (SOAR) technology to automate some, or…

As if security operations professionals don’t have enough on their plates, they can add a new geo-political event — the…

When an innovative product hits the market, it does not take long for the market to become overrun with similar…

The security operations center, ground zero for addressing cyberthreats, has been around roughly only as long as the modern internet….

  We are all aware that security operations centers are inundated with alerts causing massive case backlogs and potentially critical…

    If you are like most security professionals, you are hoping to get a little downtime before the end…

Welcome back to our continuing Q&A series – “Sitdown with a SOC Star” – in which we pose 21 questions…

This post first appeared in Cyber Defense Magazine’s December edition.  As a newly hired cybersecurity analyst, you’re excited to start…

Recently I took my 4-year-old daughter to the doctor’s office for a run-of-the-mill ear infection. Generally our wait time with…

  Everyone involved in the triage, investigation and response to security incidents battles the same adversary: Time.  Whether you are…

Halloween is Thursday, but if you work in a security operations center, you might feel like every day is All…

Imagine being a patient in a hospital, and when your knowledgeable caretaker leaves for the day, the incoming attendant is…

Learning never takes a break. Here are five instructive, compelling and – most important of all – practical resources that…

Few places inside the business demand metrics quite like the security operations center (SOC). Think about it: Not only has…

  In a perfect world, security operations center (SOC) teams would always be one or two steps ahead of attackers,…

  If you follow innovation in the security space, you would be hard pressed not to have heard of SentinelOne…

  Alert fatigue, skills shortages, process shortfalls and budget restrictions are all working against the security operations center (SOC), which…

  Security professionals are constantly inundated with information about “breakthrough” products claiming to “change the face” of <insert product category…

Smart, risk-minded organizations, when considering how to ensure the continuity of their business, hope for the best but prepare for…

  With the introduction this year of so-called “robot umpires” into professional baseball – as part of an experiment in…

  Recently leading analyst firm Gartner released its annual Magic Quadrant (MQ) for Endpoint Protection Platforms (EPP). Decision-makers look to…

  Of all the security operations center efficacy metrics, arguably none is more indicative than mean time to detect (MTTD)…

  Effective case management can be a real game-changer for your security operations center (SOC). Squared up against a complex…

After years of investing in best-of-breed detection and SIEM tools, security operations centers are buried in alerts, giving rise to…

  Another Black Hat USA is in the books, and anyone leaving the festivities feeling apprehensive about the state of…

Security professionals, not grasshoppers, are just days away from descending on Las Vegas for the annual Black Hat USA conference….

  One of the most common and time-consuming cases security operations centers (SOCs) must complete daily are malware investigations. Part…

      In an ideal world, every analyst in your security operations center would have the ability to always…

  Effective orchestration and automation can drive security teams’ productivity through the roof.  From automating time-consuming, mundane manual tasks to…

  Every day, more than 350,000 malicious and unwanted programs emerge, or roughly one for every person living in Honolulu….

Last week marked another major milestone for the security orchestration, automation and response (SOAR) market: Gartner issued its first-ever Market…

Amid all the dismal headlines that have become routine reading for security professionals (such as this study, which referenced cybercrime…

  So you’ve been breached. Putting aside the fact that your security infrastructure failed to prevent it from happening, you…

  Security operations centers deal with a variety of cases, and one of the most uncomfortable is the insider threat…

  Threat hunting is arguably one of the most overused and misunderstood terms in security. If you were to get…

In the treatise, “The Prince,” Niccolo Machiavelli, a 16th-century political theorist, muses about using deception to gain advantage over political…

Security orchestration and response (SOAR) solutions are quickly becoming a must-have for security operations centers large and small. Due to…

Typically when security operations teams think about security use cases, they focus on detection scenarios, thanks to the shift underway…

  If you are like me, you spend at least a few minutes each day checking social media sites for…

If it hasn’t happened to you yet, it will: Attackers have breached your defenses and are stalking your network. What…

So you took the proactive step to get a budget and purchase a SOAR, congratulations. The funny thing about budgets…

Seconds. That’s all it takes for an attacker to exploit a vulnerability in a security framework. Once safely inside the…

[Originally appeared on Security Boulevard] New Year resolutions in our business lives typically require more careful planning compared to our…

Enterprises Can Gain Significant Efficiencies and Increased Effectiveness through NOC/SOC Integration   Approximately 80% of organizations with a security operations…

The Most Used Playbook series brings you the production playbooks noted by our professional services team as being most utilized and favored…

Machine learning holds great promise for security operations Over the past two years machine learning has found its place firmly…

The cybersecurity sprawl struggle is real. Quick – name 50 things that you’re really good at.

Thwarting cyber threats just takes a little security operations strategy Advice for staying ahead of cyber threats abounds, yet most…

Security automation means a more efficient SOC, improving the bottom line The evolving threat landscape just gets more complex and…

Lack of effectiveness metrics and orchestration/automation top list of security operations frustrations The more things change, the more they stay…

Another year, another Black Hat has come and gone. On the show floor, we saw the continued momentum and interest…

The benefits of security orchestration, automation and response (SOAR) are many – if executed correctly There’s no doubt, organizations around…

Have a clear criteria list when selecting a security orchestration vendor Security orchestration, automation and response (SOAR) vendors offer SOCs…

Continuously Innovating Security Orchestration and Automation The Siemplify team is always adding and improving features based on feedback from our…

Managed detection and response (MDR) is a fast-growing managed security offering focused on detecting and responding to threats that have…

  Much has been written about the death of the Tier 1 SOC analyst. To paraphrase Mark Twain, reports of…

Automating the triage and incident response for account misuse alerts Well, here we are. Our fourth and final installment of…

Automating the triage and incident response for DLP alerts   Hey there, welcome back! We now proceed with the third…

Automating the triage and incident response for malware alerts Welcome to the second post in our four-part blog series where…

“Information is a source of learning. But unless it is organized, processed, and available to the right people in a…

Automating triage and incident response of phishing alerts Security orchestration and automation is an undeniably hot topic. Forrester named it…

Cybersecurity is full of terms, concepts, buzzwords, and jargon that often get misused, overstated or muddled. That’s why, every now…

Some things just go together. Peanut butter and jelly. Gin and tonic. Bacon and more bacon. The same is true…

Thousands of tools to choose from, but nearly half of security alerts go uninvestigated. Feel familiar? Hunters are fond of…

A lot has been said and written about the security talent shortage. A report by Cisco pegged the number of…

Last week marked an important milestone for the Security Orchestration and Automation market. Gartner Research issued their most comprehensive research…

Symantec and Siemplify are excited to announce a partnership to deliver a fully integrated solution for threat management.    

Building an effective security operations center (SOC) is crucial for organizations of all sizes. Just like the companies themselves, every…

NEW YORK–(BUSINESS WIRE)–Siemplify™, the leader in Security Orchestration & Automation, and Castle Ventures, a leading Data Security and Managed Security…

You have to know four things before building anything, whether it’s something “simple” like assembling your new furniture from IKEA…

Before an organization can begin to analyze the benefits of security automation, a quick reminder of the threat faced by…

The challenges faced by a security operations center (SOC) are many and well-documented:the workload is tremendous, while the workforce is limited,…

Half of Security Pros Ignore Some Important Alerts Short-staffed, more than half of organizations admit they ignore alerts that should…

Over the last decade, SIEM solutions have been the cornerstone of security operations.  As investments in detection rose, these systems…

We are only a few months into 2017, and cybersecurity issues continue to occupy news headlines. “America has a ‘cybersecurity…

In this day and age, we are constantly playing keep up with technology. On a personal and a workplace level,…

New report says “Siemplify SOC orchestration targets process quality and breadth, and analyst productivity.”

Webinar Overview Security teams are challenged by a deluge of alerts straining both infrastructure and personnel. Managing a SOC requires…

Webinar: Next generation analysts for next generation threats – lessons from deploying best practices to hundreds of SOC teams! Tuesday,…

  It’s no secret that security operations are under fire. In most enterprises, the only thing standing between a normal…

A Million Analysts Won’t Save Your SOC: The Future of Security Operations It’s no secret that companies across the world…

NEW RESEARCH SHOWS THAT 30 PERCENT OF ANALYSTS’ MANPOWER IS LOST TO DUPLICATE ALERTS As cyber attacks continue to expand…

Last month I attended the FS-ISAC Fall Summit and was thrilled to see the overwhelming interest in making security operations more…

It’s no secret that companies across the world face serious challenges when it comes to designing and maintaining their Security…

Those managing corporate security environments can have mixed feelings towards automation. On the one hand, automation helps teams efficiently handle…

Cyber criminals have their cross hairs firmly locked on the financial sector. Although financial institutions have long been primary targets…

SOC teams are tired of being held hostage to a sea of alerts, by disconnected point solutions (each proclaiming to…

The security operations center of an organization is essentially it’s eyes and ears, defining what elements should be given pass…

SIEMs are mandatory tools for forensic security teams, aggregating logs from a multitude of sources, exploring within a dataset, and auditing…

Below is an eyewitness account we received from one of our U.S. bank customers following a security incident. Names and…

Today is an excellent opportunity to see how next generation SOC platforms are changing enterprise security. One of the biggest organized cyber…

Transforming the way enterprises perform cyberthreat analysis, Siemplify emerged from stealth mode today with the first security operations platform to…

For the past 13 years, I’ve been heavily involved in the military intelligence community and the cybersecurity industry, setting up…