Publication Month: August 2021
The SANS 2021 Automation and Integration Survey, written by SANS Matt Bromiley, aims to identify where organizations are in their automation/integration journey and what steps are they taking to achieve their short-term and long-term goals for automation.
SANS is seeking sponsors that have proven automation and integration tools to help balance the constantly increasing number of attack surfaces against threats. Sponsors have the opportunity to align their products and solutions with this survey, which is highly sought out by our SANS community and frequently listed in publications such as Dark Reading, InfoRiskToday, and SC Media.
- 300 opt-in leads with no cap
- Branded whitepaper
- Edited & full mp4 recording of the sessions
- Advertisement of sponsorship level in marketing
About the Survey
The 2018 Automation and Integration Survey quantified effective automation. Automation depends on integration - how well the technology, tools, and processes can play together – which in turn depends on interoperability. The survey actually defined an approach to maturity based around these elements. Therefore, we intend to focus on an area within SecOps where automation directly impacts the workflow(s) and procedure(s) such as incident response (planning and execution) or SOC (where a balance needs to be struck between a myriad of processes.
The 2020 Automation and Integration Survey provided an overview of where organizations are in their automation/integration journey.
This year, this survey will build upon its predecessors by first identifying those areas where organizations feel they have achieved the benefits of security automation and integration – SOC. IR, other – and then exploring why they feel this way:
• How mature do organizations feel their use of automation is this area?
• What are their short-term or long-term goals for automation? What steps did they or are they taking to achieve their short-term or long-term goals to achieve these?
Are they taking a quantitative approach (e.g., use of metrics) or a more qualitative to assess that feeling?
• What is the current/planned investment in automation and what are the factors (e.g., barriers, enablers) being considered to support that investment?
And finally, SANS would like to explore whether automation has truly emerged as the panacea helping balance a constantly increasing number of attack surfaces against the threats born of shortages in skilled staff and a largely nowremote workforce. In short, the Analyst team is interested in the “human factors” elements – pros and cons – limit the effective use of automation. Examples can include “alert fatigue” due to the high volume and the design of suboptimal response.