What Works in SOC/NOC Integration: Improving Time to Detect, Respond and Contain

Logo
Presented by

Mitch Roberson, Director of Enterprise Systems at Curo Financial & John Pescatore, Emerging Security Trends Director at SANS

About this talk

The 2019 SANS Security Operations Center survey showed that SOC managers list lack of integration between security and IT and network operations as one of the major obstacles to both their effectiveness in dealing with evolving threats and their ability to efficiently protect the business in constrained budget environments. Less than 40% of SOC managers say that the SOC and the NOC are effectively integrated, and those who report higher levels of integration show improvement in reducing time to detect, respond and contain. During this SANS What Works webcast Mitch Roberson, Director for Enterprise Systems at Curo Financial, will provide details of the selection and deployment of ExtraHops Reveal(x) to increase visibility into network traffic, gaining detailed and timely insight into performance and security issues and crossing organizational siloes by using a common tool and dashboard for application owners, network administrators and security analysts. Join SANS Director of Emerging Security Trends John Pescatore and Mitch Roberson to hear details on the selection, deployment and experience using ExtraHop. The webcast will contain a discussion of lessons learned and best practices as well as detail the metrics used to demonstrate the value of improved email authentication and trust.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (190)
Subscribers (11564)
The prevention and protection model of cybersecurity isn’t working: between the cloud, IoT, and the sheer pace of change, the enterprise is no longer built to be walled in. This channel provides educational webinars to help SecOps (SOC) and NetOps (NOC) teams, from CIOs and CISOs to analysts and practitioners, change their perspective in order to identify, investigate, and respond to threats across the modern attack surface. We explore how cloud-native network detection and response (NDR) provides the complete visibility, real-time threat detection, and intelligent response you need to secure your hybrid environment. You’ll also find product information about ExtraHop Reveal(x) which enables you to: Eliminate blind spots: Cover 100% of your hybrid environment, Detect what matters: Find threats 95% faster, and Act quickly: Respond to breaches 70% faster. Learn more at www.extrahop.com