How Can We Enhance SOC Automation for Maximum Efficiency?
In our last Super Cyber Friday, "Hacking SOC Automation: An hour of critical thinking about how the line of what we can automate is changing," we discussed the evolution of SOC automation, the impact of AI, and the best practices for integrating automation in your SOC operations. Joining us for this insightful discussion were Caleb Sima , builder, WhiteRabbit, and Edward Wu , CEO and founder, Dropzone AI .
HUGE thanks to our sponsor, Dropzone AI
Watch the full video here:?
Join us on August 2nd, 2024 for Ask a CISO Anything - “Hacking CISOs”
We’re doing this all again in two weeks for our Super Cyber Friday event, “Hacking CISOs: Ask a CISO anything” with our two CISOs William Harmer, CISSP, CISM, CIPP (CISO of Craft Ventures ) and Steve Zalewski (former CISO of Levi Strauss and co-host of Defense in Depth).
It all starts at 1 PM ET/10 AM PT with our meetup at the end of the hour.
Did you know that we have an events calendar? Visit our events page to subscribe so you can stay up to date on Super Cyber Friday and other CISO Series content.
领英推荐
Best Quotes from Our Guests:
"AI can help by automating the enrichment processes or investigative processes that generally an analyst would have to do per alert, which means your time to triage should significantly be reduced." - Caleb Sima, WhiteRabbit
“Anything manual that you do multiple times, you should just not do it again. Write something to automate it.” - Caleb Sima, WhiteRabbit
"Ensuring the accuracy and reliability of automated SOC processes is crucial. While traditional rule-based automation is 100 percent deterministic, AI-based solutions require keeping humans in the loop to make final decisions and incorporate additional context." - Edward Wu, Dropzone AI
"We are still trying to figure out from an AI perspective what it's good at automating in the SOC. A lot of people are dipping their toes in the AI world by doing the really simple things like translating complex queries to natural language or vice versa." - Caleb Sima, WhiteRabbit
"Most AI products for SOC automation aim to augment the team with more analytical bandwidth and capabilities, allowing the team to operate as if you have double or triple the number of human analysts." - Edward Wu, Dropzone AI
Quotes from the Chat Room:
"SOAR hasn't been discussed regarding automation efficiency. It's crucial to integrate SOAR solutions for optimal SOC performance." - Andrew Aken, PhD, CISSP , CIO/vCISO, DocDrew, LLC
"There's a corollary there for AI and automation in cybersecurity: AI can augment human capabilities but shouldn't replace human judgment." - Andrew Aken, CIO/vCISO, DocDrew, LLC
"Measure the holistic impact of AI on SOC on an ongoing basis to understand where value is added most." - Randall Hettinger , director of BDR team, Permiso Security
"Shorten the feedback loop for training AI so that if it hallucinates, it can also learn that it hallucinates wrong and doesn't do it again." - James S. , DevSecOps engineer
--
1 周I want driver job 19 years experience in uae
Chief Transformation and Commercial Officer at Lee Enterprises | Fortune 500 | CIO | CDO | CISO Digital Transformation, Cloud, Mobile, Cyber Security, Disruption/Innovation, Artificial Intelligence
8 个月You should keep talking about what a mess crowdstrike made . That’s the topic. Let’s talk about real things and billions of dollars of negative impact those actions that lack any business and technical integrity can make on an entire nation continent and population.
family driver
8 个月@