Building a Next-Gen SOC to Tackle Unknown Threats: Evolving From SOC to CSOC
CISOs are constantly working to develop detection, response and recovery capabilities, while prevention tops the wish list. To handle the skyrocketing volume of malware and cyber exploits, many enterprises are building SOCs that provide a central place for detecting, diagnosing and remediating online attacks.
There's a need to move to a next-gen SOC, or CSOC (Cybersecurity Operations Center) to be more proactive in detecting threats. This can be done by integrating analytics, threat hunting and threat intelligence functions with conventional SOC functions, including engineering, incident analysis and response.
This session details:
- Necessary ingredients of a CSOC that help in proactive monitoring and management capabilities;
- Tools for detection, quick response and sound analytics;
- Components of risk analysis engines.