Vendor ProfileMonitoring and Response

Rise of the Machines: The 2024 SOC Transformation

Leonid Belkind, CTO and Co-Founder of Torq, shares insights on how AI-driven hyperautomation addresses the existential challenges SOC analysts face.

This entry is part 3 of 6 in the series Implementing a Security Operations Centre

We’ve been taught to fear the rise of the machines. But what if machines taking over is a good thing?

In this podcast Leonid Belkind, CTO and Co-Founder of Torq, sat down with Brittney Zec to share insights on how AI-driven hyperautomation addresses the existential challenges SOC analysts face.

The video sets the stage by highlighting the rapid pace at which technology is evolving and the need for SOC to adapt to these changes to effectively combat cyber threats.

Key technologies such as AI, machine learning, and automation are identified as the driving forces behind the transformation of SOC operations. The impact of the 2024 SOC transformation on cybersecurity practices and the overall security posture of organizations is analyzed.

Torq Hyperautomation Reinvents Security Case Management

The new Torq Hyperautomation platform was purpose-built from the ground up to deliver the comprehensive Case Management capabilities SecOps have been demanding for years, and never benefited from—until now.

Time and time again, legacy SOAR platforms have failed to deliver on the promise of Case Management. These earlier tools simply can’t keep up with the pace, volume, and variety of evolving cybersecurity threats.

They also don’t offer SecOps the flexibility to quickly pivot through records to accurately assess whether or not they’re facing a targeted campaign, a new and novel threat, or an ongoing, pervasive threat that could stop business in its tracks.

Unique modern AI co-pilot capabilities drive efficiency even further, ensuring that security analysts are assisted by cutting-edge technology to make the right choices and not miss any details.

Utilizing the power of ChatGPT, the findings are condensed to two sentences that state that 56 of 71 AV engines detected the threat as malicious. Contrast that with the overly-verbose output that you would typically receive on VirusTotal. This saves tremendous time and summarizes the incident in a readily consumable human-readable format.

Collaboration outside the security operations center is easily done within the platform, which is especially helpful in promoting cross-team collaboration with more complex incidents requiring multiple subject matter experts. Each external team can resolve security issues efficiently using their tools of choice, such as, but not limited to, Atlassian Jira, ServiceNow, Github, and more.

Series Navigation<< Integrating Jira into your Security Operations Center with XM Cyber‘National SOC’: Government’s Respond to Scale of Cybersecurity Challenge with Whole Sector Operation Centres >>

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button