Changing the paradigm: Unit 42’s answer to this endless cycle of attackers always being one step ahead of defenders is to change the paradigm: cybersecurity has become so specialized, it says, that the answer is to use a managed service built from the ground up to counter real rather than abstract threats.With that in mind, Palo Alto Networks this week launched a new SOC service, Unit 42 Managed Extended Security Intelligence and Automation Management (XSIAM) 2.0. This, the company claims, has expanded its XSIAM 1.0 to include complete onboarding, threat hunting and response, and the modelling of attack patterns faster than a traditional SOC.Is this persuasive? CISOs will have heard this message before: the old stuff no longer works, so invest in something new. And there is always an old system or service that needs ripping out to be replaced by a shiner, new one.To complicate matters, the idea of ever more advanced SOCs might not be a panacea. Some have even argued that that SOCs themselves can end up constrained by the same issues of skills shortages and budget constraints as traditional IT departments.As Palo Alto Networks puts it: “The window for defense has collapsed, and most SOCs weren’t built for the speed of today’s attacks.” So, out with old tools such as traditional SIEMs and SOAR, which merely generate alerts; the modern AI-powered SOC should act on them “at machine speed.”
First seen on csoonline.com
Jump to article: www.csoonline.com/article/4133342/cyber-attacks-enabled-by-basic-failings-palo-alto-analysis-finds.html
