Advanced SOC Operations / CSOC , Next-Generation Technologies & Secure Development
Getting the Most Out of SOAR
Demisto's Dan Sarel on Fundamental Changes Needed in Security ThinkingTaking a workflow-driven approach is critical to successfully embrace security automation, orchestration and response - or SOAR - technologies, says Dan Sarel of Demisto.
See Also: The Importance of Automated Cyberthreat Response
"Up until now, what SOAR did was build engines to connect all the [security] products to do the orchestration and automation," he says. "Now we are at a stage where adding machine learning will help the SOC do a lot of sophisticated things."
In a video interview with Information Security Media Group at RSA Conference 2019 in San Francisco, Sarel discusses:
- Common misconceptions about SOAR;
- SOAR's evolution and the changes in thinking needed;
- Recommendations for security teams adopting SOAR.
Sarel is the co-founder and vice president of product at Demisto.