SOCs Grow Up to Protect, Defend, Respond: Results of the 2017 SANS Survey on Security Operations Centers, Part 1

  • Wednesday, 17 May 2017 1:00PM EDT (17 May 2017 17:00 UTC)
  • Speakers: Christopher Crowley, James Carder, John Markott, Alex Valdivia
Join survey author Christopher Crowley as he co-chairs the SANS SOC Summit June 5-6, 2017.

It takes a village to protect today's networks from cyber threats. And, today's security operations centers (SOCs) represent villages unto themselves, with many different roles and technologies supporting multiple, complex tasks and often spanning geographies.

Whether in-house or in the cloud, SOCs are maintaining prevention and detection systems and monitoring hosts, the network and the Web for vulnerabilities. Increasingly, SOC functions are converging with intelligence, threat hunting and other emerging processes to aid in prevention and response.

How are organizations accomplishing these tasks? What types of resources are they utilizing to staff and run their SOCs? And what type of organizations are turning toward cloud-based managed services for part or all of their SOC needs? In this first part of a two-part webcast, join SANS principal instructor, Chris Crowley, who will share the results of SANS' first survey on security operations centers. Attend this webcast and learn about trends in SOCs, including:

  • Basic SOC architectures
  • Preparedness, staffing and capabilities
  • Level of automation and integration between prevention, detection and response
  • The SOC's relationship with IT Ops
  • What types of organizations are using cloud-based SOC services
  • What types of organizations are devoting mostly in-house resources to maintain their own SOCs
  • What functions are most commonly turned over to the cloud versus what are most commonly kept in-house

Click Here to be among the first to view the associated results whitepaper written by Chris Crowley. Click here to register for the second part of this webcast: Future SOCs, held on Thursday, May 18, 2017