Stories
Slash Boxes
Comments

SoylentNews is people

posted by martyb on Friday September 22 2017, @11:02AM   Printer-friendly
from the brought-to-you-by-Home-Depot,-Target,-and-Equifax dept.

I often talk about automation in my articles and it's a hot topic in general – a quick Google search reveals more than 100 million results for security automation. Given the global shortage of cybersecurity professionals, and the volume and velocity of increasingly sophisticated threats we all have to deal with, humans can't go it alone. Automation helps get more from the people you have – handling time-intensive manual tasks so they can focus on high-value, analytical activities. But the catch with automation is that it has to be applied at the right time in the security lifecycle in order to be effective.

You've likely heard the phrase: "dirty data in, dirty data out." Jumping to the end of the security lifecycle and using automation to take action – like automating playbooks and automatically sending the latest intelligence to your sensor grid (firewalls, IPS/IDS, routers, web and email security, endpoint, etc.) – can backfire. Without first aggregating, scoring and prioritizing intelligence you can actually exacerbate the dirty data problem.

[...] But with the sheer volume of threat data continuing to climb at a staggering rate, we need to start with the threat – automating how we gather, score and prioritize threat intelligence. Otherwise we're just amplifying the noise, wasting precious resources and hampering security – and that's the dirty secret.

Filter first, not last.


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 5, Insightful) by VLM on Friday September 22 2017, @04:17PM

    by VLM (445) Subscriber Badge on Friday September 22 2017, @04:17PM (#571689)

    Given the global shortage of cybersecurity professionals

    should be

    Given the global shortage of cybersecurity professionals willing to work for minimum wage or less

    According to some google results from payscale and other sites, the average Python software dev makes $104K and the average security droid makes a mere $70K. I donno for sure, but I can guess one salary strategy that might, just might, result in more applicants. People do like money, ya know.

    Wake me when software devs are scrambling away from software development to get more money doing security, LOL. If you're in IT security, you can get nearly a 50% pay raise by doing nearly anything else in IT other than help desk phone answerer. I wonder if that might contribute to the "shortage".

    Starting Score:    1  point
    Moderation   +4  
       Insightful=2, Interesting=1, Underrated=1, Total=4
    Extra 'Insightful' Modifier   0  
    Karma-Bonus Modifier   +1  

    Total Score:   5