Welcome!

Microservices Expo Authors: Liz McMillan, Pat Romanski, Elizabeth White, Mehdi Daoudi, Yeshim Deniz

Related Topics: @ThingsExpo, @CloudExpo, Cloud Security

@ThingsExpo: Blog Post

Effective SOC and an Automated Process | @ThingsExpo #IoT #M2M #Cybersecurity

There are plenty of very real and costly examples that show why organizations are increasing their spending for cybersecurity

Why 2017 Is the Time to Invest in an Effective SOC and an Automated Process

Every Security Operations Center (SOC) manager and security analyst is struggling to some degree to stay one step ahead of the dramatic growth in cybercrime and the ransomware epidemic. In fact, according to the Cybersecurity Market Report published by Cybersecurity Ventures, a cyber security research and publishing firm, spending on cybersecurity is predicted to top $1 trillion between 2017 and 2021.

There are plenty of very real and costly examples that show why organizations are increasing their spending for cybersecurity. While the high profile Mirai attacks with the Dyn IoT botnet attack affecting more than 100,000 endpoints is just the latest, the reality is that this is just the tip of the emerging iceberg.

With a developing reality of billions of under-protected Internet of Things (IoT) devices, the threat landscape can no longer be successfully traversed with outmoded processes. In 2017, organizations are increasingly seeing the benefits of investing in an automation platform within the SOC for effectively fighting cyber threats.

Because it's a very lucrative criminal enterprise, ransomware will only get bigger in 2018. The challenge of handling the nearly limitless generated alerts by network-connected devices alone will strain the SOC human resource element beyond its capacity, which only increases malware vulnerability. What is clear is that attacks in 2017 and 2018 will become more sophisticated and targeted against businesses, governments, educational institutions, and consumers on a global scale.

While IoT and the cloud will continue to be major sources of concern around managing cyber security, open source is exponentially adding to those challenges. Only a few major companies were heavily invested in open source in 2007. In 2017, things have drastically changed, as open Docker, OpenStack, and other open source technologies are the building blocks to the digital infrastructure. Around this time last year, it was reported that 87 percent of open-source vulnerabilities are cross-site scripting (XSS) and SQL Injection. Being free, open to everyone, and customizable to fit any need has enabled an open source community of perhaps millions. However, the benefits of open source also expose its vulnerabilities as cyber criminals can see exploitable flaws in the code as well.

It's challenging enough for security experts to design and implement a cybersecurity playbook, let alone integrating, managing and continuously improving it. Every organization is resource-constrained in this regard, which is why many are automating processes to fight cyber threats in 2017 as part of an effective SOC. Since replacing existing solutions falls far short of meeting the challenges, organizations and their security professionals will be looking to ways to create new automated layers of defense. These automated prevention and response technologies are the ideal solution to providing the tools that can adapt to emerging threats. Simultaneously, they will enable these organizations and their security teams to maximize the capabilities of existing human and technological resources.

Cyber Criminals Wreak Havoc
It's true that cyber threats are coming from many multiple places as cyber criminals wreak havoc, commit fraud, steal information, and ultimately cripple corporations and governments. The promise of automated prevention and response technologies is the foundation of a strong cyber security playbook that enables the prepared SOC to have clear approaches and automated processes for an informed threat outlook. This level of better preparation will provide organizations of all sizes with the flexibility to withstand unexpected, high impact security events.

A Holistic Approach to Win This Situation
The growing threat landscape has shown organizations that cybersecurity is a vital component that must become part of the fabric of the business. This means having a holistic, intuitive and automated communication, process fulfillment and response platform in order to be competitive in the digital age. These solutions must enable a high level of intuitive product and platform integration with both infrastructure as well as security components of the organization. By integrating advanced automation technologies with cloud architectures and communication platforms, organizations can quickly identify and respond to threats while positioning the business competitively by reducing costs and risks.

This is a growing trend as evidenced by the PwC Global State of Information Security® Survey 2017. The survey shows how "executives are adopting technology and collaborative approaches to cybersecurity and privacy to manage threats and achieve competitive advantages."

More Stories By Slavik Markovich

Slavik Markovich is CEO and Founder of Demisto. He's a serial entrepreneur with a passion to solve hard technology problems. He enjoys reverse engineering things and believes that big things can be built with the right building blocks and strong foundation.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.


Microservices Articles
Digital Transformation is well underway with many applications already on the cloud utilizing agile and devops methodologies. Unfortunately, application security has been an afterthought and data breaches have become a daily occurrence. Security is not one individual or one's team responsibility. Raphael Reich will introduce you to DevSecOps concepts and outline how to seamlessly interweave security principles across your software development lifecycle and application lifecycle management. With ...
Containers and Kubernetes allow for code portability across on-premise VMs, bare metal, or multiple cloud provider environments. Yet, despite this portability promise, developers may include configuration and application definitions that constrain or even eliminate application portability. In this session we'll describe best practices for "configuration as code" in a Kubernetes environment. We will demonstrate how a properly constructed containerized app can be deployed to both Amazon and Azure ...
All zSystem customers have a significant new business opportunity to extend their reach to new customers and markets with new applications and services, and to improve the experience of existing customers. This can be achieved by exposing existing z assets (which have been developed over time) as APIs for accessing Systems of Record, while leveraging mobile and cloud capabilities with new Systems of Engagement applications. In this session, we will explore business drivers with new Node.js apps ...
The now mainstream platform changes stemming from the first Internet boom brought many changes but didn’t really change the basic relationship between servers and the applications running on them. In fact, that was sort of the point. In his session at 18th Cloud Expo, Gordon Haff, senior cloud strategy marketing and evangelism manager at Red Hat, will discuss how today’s workloads require a new model and a new platform for development and execution. The platform must handle a wide range of rec...
More and more companies are looking to microservices as an architectural pattern for breaking apart applications into more manageable pieces so that agile teams can deliver new features quicker and more effectively. What this pattern has done more than anything to date is spark organizational transformations, setting the foundation for future application development. In practice, however, there are a number of considerations to make that go beyond simply “build, ship, and run,” which changes how...
CloudEXPO New York 2018, colocated with DXWorldEXPO New York 2018 will be held November 11-13, 2018, in New York City and will bring together Cloud Computing, FinTech and Blockchain, Digital Transformation, Big Data, Internet of Things, DevOps, AI, Machine Learning and WebRTC to one location.
DevOpsSummit New York 2018, colocated with CloudEXPO | DXWorldEXPO New York 2018 will be held November 11-13, 2018, in New York City. Digital Transformation (DX) is a major focus with the introduction of DXWorldEXPO within the program. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term.
Adding public cloud resources to an existing application can be a daunting process. The tools that you currently use to manage the software and hardware outside the cloud aren’t always the best tools to efficiently grow into the cloud. All of the major configuration management tools have cloud orchestration plugins that can be leveraged, but there are also cloud-native tools that can dramatically improve the efficiency of managing your application lifecycle. In his session at 18th Cloud Expo, ...
Traditional IT, great for stable systems of record, is struggling to cope with newer, agile systems of engagement requirements coming straight from the business. In his session at 18th Cloud Expo, William Morrish, General Manager of Product Sales at Interoute, will outline ways of exploiting new architectures to enable both systems and building them to support your existing platforms, with an eye for the future. Technologies such as Docker and the hyper-convergence of computing, networking and...
While some developers care passionately about how data centers and clouds are architected, for most, it is only the end result that matters. To the majority of companies, technology exists to solve a business problem, and only delivers value when it is solving that problem. 2017 brings the mainstream adoption of containers for production workloads. In his session at 21st Cloud Expo, Ben McCormack, VP of Operations at Evernote, discussed how data centers of the future will be managed, how the p...