A Global SOC Never Sleeps: Advice on How to Build and Manage Yours

Presented by

Jeremiah Dewey, VP, Managed Services Delivery Practice / Warwick Webb, Senior Director, Detection & Response Services, Rapid7

About this talk

While every organization currently deals with security incidents in some way, most organizations struggle under the weight of alert fatigue, lack of visibility, and prioritization challenges. While the majority of organizations have established a SOC, most organizations face a skills/staffing shortage, a continuously expanding attack surface, unintegrated security tools, slow investigations, inconsistent response procedures, and general analyst burnout. Does this sound chaotic? Can you hire your way out of this problem? Should you completely outsource your incident response to a managed provider? Is that even possible? Is there a middle ground between outsourced and insourced? What technologies are a “must have” versus a “nice to have”. What performance metrics are the right ones to track your program? The managed services and professional services teams at Rapid7 work with more than 1,000 organizations of all sizes and levels of security maturity to help them operate and mature their incident response programs. From these experiences Rapid7 has discovered some very helpful keys that you can apply to your program.
Related topics:

More from this channel

Upcoming talks (6)
On-demand talks (607)
Subscribers (52586)
Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attackers methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.