Tag: soc
-
ATLSecCon 2025: Security Readiness Means Human Readiness
LLMs won’t fix a broken SOC, but apprenticeship might. ATLSecCon 2025 revealed how outdated hiring and cultural gatekeeping are breaking cybersecurity from the inside out. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/atlseccon-2025-security-readiness-means-human-readiness/
-
How To Integrate MITRE ATTCK Into Your SOC For Better Threat Visibility
The evolving cybersecurity landscape demands advanced strategies to counter sophisticated threats that outpace traditional security measures. The MITRE ATT&CK framework emerges as a critical tool for Security Operations Centers (SOCs), offering a structured, knowledge-driven approach to understanding adversary behavior. By systematically mapping attacker tactics, techniques, and procedures (TTPs), it empowers organizations to enhance threat detection,…
-
Managing Burnout in the SOC What CISOs Can Do
The Security Operations Center (SOC) is the nerve center of modern cybersecurity, responsible for detecting, analyzing, and responding to threats 24/7. However, the relentless pace, high stakes, and constant pressure to defend against sophisticated attacks can take a heavy toll on SOC analysts. Burnout is now a significant risk in many SOCs, leading to decreased…
-
Startup Exaforce Nabs $75M to Grow AI-Powered SOC Automation
Exaforce’s AI-Powered Automation Aims to Streamline Security Ops for Enterprises. SOC automation startup Exaforce closed a $75 million in Series A financing round to enhance its AI model purpose-built for cybersecurity. The company plans to expand support for SaaS and cloud platforms and deploy agentic features to speed analyst workflows. First seen on govinfosecurity.com Jump…
-
AI Workshop: Fully Automate Tier 1/2 SOC Tasks”¦At Scale
Slash SOC response times from hours to minutes with Morpheus AI”, register for our live AI workshop on May 7 to transform your Tier 1/2 operations. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/ai-workshop-fully-automate-tier-1-2-soc-tasksat-scale/
-
SOC Automation: 7 Uses Cases for the Modern SOC
First seen on scworld.com Jump to article: www.scworld.com/native/soc-automation-7-uses-cases-for-the-modern-soc
-
Torq Acquires Startup Revrod to Enhance AI SOC Capabilities
Deal Adds Natural Language, Multi-Agent RAG Tech to Autonomous Security Platform. Torq’s acquisition of Revrod gives it a strategic leap in autonomous security operations. The startup’s multi-agent retrieval-augmented generation engine enables smarter, faster threat detection, triage and mitigation without heavy manual workflows. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/torq-acquires-startup-revrod-to-enhance-ai-soc-capabilities-a-28015
-
SOC Alert Fatigue Hits Peak Levels As Teams Battle Notification Overload
Security Operations Centers (SOCs) are facing a mounting crisis: alert fatigue. As cyber threats multiply and security tools proliferate, SOC teams are inundated with thousands of notifications daily. This overwhelming volume of alerts many of which are false positives or low-priority leads to desensitization, missed threats, and burnout. For managers, understanding and addressing alert fatigue…
-
Zeek Deployments Rise Across SOCs For Enhanced Network Visibility
Zeek, formerly known as Bro, has established itself as a leading open-source network security monitoring platform. As organizations face increasingly complex cyber threats in 2025, Zeek’s capabilities have evolved to provide deeper visibility, advanced analytics, and seamless integration with modern security operations. This article explores the latest developments in Zeek, its key use cases and…
-
Agentic AI is both boon and bane for security pros
Recent agentic security signposts: Recently, we have seen numerous examples of how quickly building your own autonomous AI agents has taken root. Microsoft last month demonstrated six new AI agents that work with its Copilot software that talk directly to its various security tools to identify vulnerabilities, flag identity and asset compromises. Simbian is hosting…
-
CTG Expands Cyber Resilience Services with Cegeka Modern SOC
First seen on scworld.com Jump to article: www.scworld.com/news/ctg-expands-cyber-resilience-services-with-cegeka-modern-soc
-
Hype oder Realität? – KI im autonomen SOC
First seen on security-insider.de Jump to article: www.security-insider.de/kuenstliche-intelligenz-autonomes-soc-cybersicherheit-a-5429cafccef37e170421c20e38925978/
-
SOC It to Me: Planning Your Career in an AI-Driven World
Emerging AI Tools Can Transform SOC Analysts’ Jobs But Require New Sets of Skills In a job market known for its talent shortage and skills gap, the shift to AI-based solutions represents both an opportunity and a call to action. While AI can tackle grunt work with remarkable accuracy, it also demands a new set…
-
SOC Metrics That Matter: KPIs Every Security Team Should Track
First seen on scworld.com Jump to article: www.scworld.com/native/soc-metrics-that-matter-kpis-every-security-team-should-track
-
Google Targets SOC Overload With Automated AI Alert and Malware Analysis Tools
Google plans to unleash automated AI agents into overtaxed SOCs to reduce the manual workload for cybersecurity investigators. The post Google Targets SOC Overload With Automated AI Alert and Malware Analysis Tools appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/google-targets-soc-overload-with-automated-ai-alert-and-malware-analysis-tools/
-
Agentic AI in the SOC – Dawn of Autonomous Alert Triage
Security Operations Centers (SOCs) today face unprecedented alert volumes and increasingly sophisticated threats. Triaging and investigating these alerts are costly, cumbersome, and increases analyst fatigue, burnout, and attrition. While artificial intelligence has emerged as a go-to solution, the term “AI” often blurs crucial distinctions. Not all AI is built equal, especially in the SOC. Many…
-
ISMS.online Expands Compliance Portfolio with SOC 2 Offering
First seen on scworld.com Jump to article: www.scworld.com/news/isms-online-expands-compliance-portfolio-with-soc-2-offering
-
20+ RSAC Things (and Places) You Should Know
Maximize your RSA Conference 2025 experience with insider tips, must-visit spots, and a special invitation to see Morpheus AI SOC at Booth N-4400. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/20-rsac-things-and-places-you-should-know/
-
Top 20 Best Open-Source SOC Tools in 2025
As cyber threats continue to evolve, Security Operations Centers (SOCs) require robust tools to detect, analyze, and respond to incidents effectively. Open-source SOC tools provide cost-effective, customizable, and community-supported solutions for organizations of all sizes. In this article, we’ll explore 20 notable open-source SOC tools for 2025, categorized by their functionalities. What Is An Open-Source…
-
AI Adoption in the Enterprise: Breaking Through the Security and Compliance Gridlock
AI holds the promise to revolutionize all sectors of enterpriseーfrom fraud detection and content personalization to customer service and security operations. Yet, despite its potential, implementation often stalls behind a wall of security, legal, and compliance hurdles.Imagine this all-too-familiar scenario: A CISO wants to deploy an AI-driven SOC to handle the overwhelming volume of security…
-
Microsoft’s AI tool catches critical GRUB2, U-boot bootloader flaws
Tags: access, ai, control, cybersecurity, exploit, firmware, flaw, Hardware, microsoft, mitigation, monitoring, risk, soc, supply-chain, tool, update, vulnerability, vulnerability-management, zero-dayAI-powered discovery changes the cybersecurity landscape: Microsoft’s Security Copilot tool significantly accelerated the vulnerability identification process, with a particular focus on filesystem implementations due to their high vulnerability potential.”Using Security Copilot, we were able to identify potential security issues in bootloader functionalities, focusing on filesystems due to their high vulnerability potential,” the blog stated. “This…
-
Neues eBook ‘Transformation und Compliance im SOC” – Wie ein modernes SOC der Compliance helfen kann
First seen on security-insider.de Jump to article: www.security-insider.de/cybersicherheit-socs-compliance-transformation-a-9d2ac6a33f80f7ee4fc4714cad929b84/
-
AI promises to create a ‘SIEM Renaissance’ in the SOC
First seen on scworld.com Jump to article: www.scworld.com/perspective/ai-promises-to-create-a-siem-renaissance-in-the-soc
-
From checkbox to confidence: Why passing the audit isn’t the endgame
“We passed the audit. No idea how, but we passed.” If that sentence sounds familiar or worse, relatable it’s time for a serious look in the mirror. Every year, companies across industries breathe a collective sigh of relief when the auditors give the thumbs-up. The SOC 2, ISO 27001, PCI DSS pick…The post From checkbox…
-
Nir Zuk: Google’s Multi-Cloud Security Strategy Won’t Work
Palo Alto Networks CTO Nir Zuk predicts Google’s security push through its $32 billion buy of Wiz won’t succeed, as customers are reluctant to buy multi-cloud tools from cloud vendors. Zuk details how adversaries use LLMs at scale and how Palo Alto is unifying SOC tools under its Cortex platform. First seen on govinfosecurity.com Jump…
-
Student-Powered SOCs Train Security’s Next Generation
University security operations centers that hire and train students are a boon to state and local governments while giving much-needed Tier 1 cybersecurity training to undergraduates. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/student-powered-socs-train-security-next-generation
-
KI-Agenten erobern die Cybersicherheitsbranche
Tags: ai, cloud, cyberattack, cyersecurity, edr, governance, identity, intelligence, mail, microsoft, phishing, soar, soc, strategy, threat, tool, update, vulnerabilityMicrosoft führt KI-Agenten ein, um die Cybersicherheit angesichts zunehmender Bedrohungen zu automatisieren.KI-Agenten, die in der Lage sind, Code auszuführen und Websuchen durchzuführen, gewinnen in der gesamten Tech-Branche an Bedeutung. Ein weiteres Feld, welches immer wichtiger wird, ist automatisierte Sicherheit.Diese Tools sind geeignet für Aufgaben wiePhishing-Erkennung,Datenschutz undIdentitätsmanagement.Hierbei handelt es sich um Bereiche, in denen Angreifer unvermindert…
-
Evaluating AI for Security Operations
SOCs without AI aren’t just behind the curve, they’re fundamentally outmatched in the asymmetric battle against sophisticated threat actors. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/03/evaluating-ai-for-security-operations/