SOCstock 2021 is now within the rearview mirror, however because of the magic of recording know-how, you possibly can nonetheless relive it within the current. The day was stuffed with thought upsetting and trailblazing content material, delivered by safety operations professionals for safety operations professionals, throughout enterprises and MSSPs. No different infosec occasion on the planet is solely devoted to the SOC practitioner – and positively no different one does it with as a lot spirit and sparkle as SOCstock (simply take a look at our hippie brand).
Register to Watch All SOCstock On-Demand Classes
Each session is spectacular and effectively value your time to observe (and we’re not simply saying that). But when we had to decide on, listed below are the 5 shows which generated essentially the most buzz amongst attendees, which implies they made somebody assume newly or in a different way about one thing. Ultimately, that’s all we will hope to get out of an occasion like this.
1) Safety Operations One 12 months On: How COVID-19 Modified SecOps (Perpetually?)
Roughly one yr faraway from the beginning of one of many gravest well being crises in additional than a century, safety operations, like nearly each discipline, has been disrupted. Not all of the information has been grim, nonetheless: Typically talking, funding in safety controls has risen with organizations recognizing its significance to a distant workforce having the ability to thrive, even because the COVID-19 pandemic despatched the worldwide financial system right into a tailspin. However a rash of challenges have emerged and continued, together with threats associated to endpoints, phishing, ransomware, cloud and the availability chain. This panel will take stock on the yr that was for SecOps professionals throughout enterprises and repair suppliers, and look towards what the long run holds for this vital perform discovering success in a extra decentralized world, discussing every little thing from alerts and caseload to communication and collaboration to zero belief and automation.
2) A Cloud-Native SOC? Say What?
Cloud infrastructure is ephemeral and consistently altering. Instruments and practices change because of this. Additionally, there at the moment are a broader set of groups and instruments concerned in deploying, managing and updating the cloud methods and functions. Is SOC nonetheless wanted? What’s SOC to do? How does the SOC change because of this?
3) Making a Tradition of “Sure” within the SOC
At the moment’s enterprises are distributed world wide. From cloud to SaaS, detection now must be distributed with a excessive signal-to-noise ratio. To realize this, your SOC must be a workforce of “sure.” What does that imply? It means the SOC must be seen as a valued and trusted accomplice who will probably be introduced in early to assist be certain that new code, new merchandise or new procedures will seamlessly combine into the SOC. This speak will cowl methods required to shift to this new strategy, the talents required of the workforce and strategies for working with a number of stakeholders.
4) Variety and Inclusion within the SOC
Cybersecurity doesn’t simply have a expertise scarcity downside – it additionally has a variety and inclusion downside. Ladies proceed to be considerably underrepresented, and whereas minority illustration in infosec is barely increased than the U.S. common, inclusive cultures stay elusive. But research have proven that organizations with higher gender and BIPOC fairness outperform firms with extra homogenous workforces. For safety groups, which means being higher outfitted to extra creatively and innovatively detect and reply to threats, and practitioners feeling extra snug, linked and assured of their potential to maintain safety postures robust. This panel will ask the robust inquiries to key influencers within the infosec discipline, zeroing in on shortfalls (and success tales) particular to cybersecurity operations, focus on obstacles which have held again initiatives from shifting ahead, and share learnings and greatest practices that may provide help to drive an actual variety and inclusion technique within the SOC.
5) ATT&CK on C-Suite: Cheat Codes
The subject of cybersecurity may be troublesome to debate with the manager department of a company. Thus, the considered presenting the MITRE ATT&CK framework to an government not to mention a whole C-Suite is usually a daunting job. Worry not, for our speaker has the “cheat codes” to make even a novice turn out to be triumphant on this endeavor!
6) The State of Managed Safety Companies
The final yr has been a boon for managed safety providers, with many firms turning to MSSPs for something from augmentation to managed detection and response (MDR) to finish managed SOC. However with fiercer competitors than ever and plenty of perceived “me-too” choices, navigating the MSSP panorama isn’t any straightforward feat. This panel will focus on the newest traits and choices within the MSSP area, together with what new providers can be found, what to search for in an MSSP and what’s usually neglected within the course of.
Dan Kaplan is director of content material at Siemplify.