5 Pitfalls to Avoid When Running Your SOC

  • 18 December 2014
  • 0 replies
  • 164 views

Userlevel 7
By Jeff Schilling
 
The former head of the US Army Cyber Command SOC shares his wisdom and battle scars about playing offense not defense against attackers.
 The perspective you get running an incidence response team is very different from the one you get as a Security Operations Center director. I refer to it as a “press box view” of cyber security, based on my experience as former head of the U.S. Army Cyber Command's SOC and, more recently, as a civilian CSO at FireHost.
In these roles, I wasn’t responsible for securing any one infrastructure, but I came to understand how many of us were “playing defense” in security ops. I started keeping a notebook of root causes for the security breaches my team worked. From these root causes, I developed what I believe are the five most common SOC pitfalls.
 
full article

0 replies

Be the first to reply!

Reply