SOCs shift to threat detection and response: Gartner


Security operations centers are shifting focus in response to today’s numerous and complex threat alerts.

Today’s modern Security Operations Centres (SOCs) are beginning to focus on threat detection and security alert management in response to modern-day threats.

SOCs are teams of cybersecurity professionals whose task it is to monitor networks for cyberattacks and suspicious behavior, as well as improve internal security controls and procedures.

These groups can be critical to maintaining adequate security hygiene and the threat data they collect may be shared with wider agencies to improve the cyberdefense industry at large.

On Tuesday, Gartner said that SOCs are now, in ever-increasing numbers,  shifting investment, resources, and time from threat prevention to threat detection and proactive response.

The research agency predicts that by 2022, 50 percent of all SOCs will encompass incident response, threat intelligence, and threat-finding capabilities, up from an estimated 10 percent in 2015.

Read more…