Were living through historic times. The current crisis will almost certainly serve as a catalyst for numerous long-term changes in our communities, altering the ways we work, play, socialize, use technology, and benefit from automation.
The global pandemic exposes how many of the things that make us humanour need to be in close proximity with others, our susceptibility to illness, our tendencies towards bias and inconsistent behaviormake our organizations profoundly vulnerable, a weakness that readily extends to the concept of the security operations center (SOC). With so many organizations forced to adapt to remote workregardless of whether theyre well- or ill-prepared, and whether or not it suits their business modelthe advantages of employing automation to accomplish tasks for which people arent well-suited are being revealed anew.
In the SOCs case, turning to automation to perform the most tedious, difficult, and unrewarding portions of the security operations workflow has long carried the benefits of improving analyst job satisfaction and effectiveness, but today it may also be able to reduce the health risks that security analysts face on the job.
Recent researchon COVID-19 transmission indicates that in the majority of cases, the virus spreads from host to host via respiratory dropletstiny amounts of fluid from inside the nose or mouth of an infected person that are released into the environment when they breathe, talk, yell, sing, sneeze or cough. The respiratory droplets that carry the largest number of viral particles are those that are biggest and heaviest, and thus are likely to fall to the ground within a narrow radius of the infected person. This is where the magical social distance of six feet originatedthe idea is that the heaviest of these droplets seldom make it more than six feet.
Asepidemiologists remind us, however, its not simply the case that contact with a minute amount of the virus is enough to trigger infection. Instead, you need to encounter an adequate number of viral particles. Scientists arent yet sure exactly what constitutes an infectious dose of COVID-19, but they do know that the longer you spend in the presence of someone who has the virus, the more likely you are to become infected. They also know that certain activitieslike singingseem to make transmission more likely, as do certain environmentsparticularly confined indoor spaces with poor airflow.
When considered from this perspective, the SOC is a nightmare. Most security operations centers were designed for physical security, which means limiting accessibility, not improving airflow. Most are interior spaces without windows, with ceilings made of solid material (no drop ceilings), and limited ventilation. Showcase SOCs with large-panel visual displays taking up entire walls of the facility and multiple desks amply stocked with monitors are rare outside of the worlds very largest (and most security-focused) enterprises. Instead, most real-world SOCs are in tiny, tightly enclosed spaces.
Whats more, the work performed in the SOC demands close collaboration. Analysts frequently consult their colleagues when performing research, evaluating risks, or assessing the best means of dealing with a threat. A security analysts job involves creativity, critical thinking, and decision-makingthings that can be improved when theyre discussed with peers or more senior coworkers. Shifts are long, so ordinary SOC operations involve bringing people into close proximity with one another for extended periods of time.
In ordinary circumstances, SOC operations are not readily amenable to the remote work model. In SecOps, speed is vital to success, and collaboration takes place much faster when people converse face-to-face than when theyre using video conferencing software or other collaboration tools to share their ideas.
Although security operations in general requires extensive collaboration between analysts, in no role is this more critical than that of the Tier 1 Analyst. As the most junior members of the security operations team, Tier 1 Analysts must engage in a great deal of on-the-job training, including numerous whiteboarding sessions. Theyre also encouraged to consult with more senior co-workers regularly while they learn more about the nuances of the role.
For all security analysts, there are benefits to in-person interactions; for Tier 1 Analysts, its difficult to do the job without them. More senior analysts are able to make more decisions independently and need less face-to-face contact for education and training.
When an intelligent automated decision engine like that of theRespond Analystis called in to perform cybersecurity monitoring, security operations programs are able to shift the composition of their teams, employing more Tier 2 and Tier 3 security analysts, and relying on software to perform the bulk of Tier 1 analysts functions. No matter the circumstances, this has the potential to make the security analyst role more fulfilling and rewarding, increasing job satisfaction and reducing turnover. It will also increase teamseffectiveness and efficiency, enabling them to review far more events than would ever be possible manually.
But today, in the face of a global pandemic thats far from over, introducing automation into the security operations workflow comes with one additional benefit: by reducing the number of personnel needed to staff the SOC, and particularly the number of Tier 1 analysts, it can lessen the health risks of working in security operationsand thus save lives.
Theres no way around it: SOCs cannot easily be remade so that theyre amenable to social distancing. And the activities performed within them remain critical for mitigating organizational risksrisks that may only be amplified as many companies navigate a rapid transition to remote work. Even senior security analysts are able to work more quickly and effectively in person than they can when telecommuting.
Implementing intelligent automated solutions like the Respond Analyst doesnt solve all the problems in security operations. Nor does it remove all the risks that come with working in a SOC during a global pandemic. But it does point the way forward toa new paradigm. In the future, automation can be called upon to perform many of the repetitive and mundane tasks that are done by humans today. This will not only save time, money, and frustration for workers, but it will also remove significant vulnerabilities from our operational processes and supply chains.
The post The COVID-19 Crisiss Impact on Security Operations: Automation Comes to the Fore appeared first on Respond Software.
Recent Articles By Author
*** This is a Security Bloggers Network syndicated blog from Blog Respond Software authored by Chris Triolo. Read the original post at: https://respond-software.com/covid-19-impact-on-secops-automation/
Continued here:
- The Automation Conference - December 9th, 2016 [December 9th, 2016]
- The Best Home Automation Systems of 2016 | Top Ten Reviews - December 24th, 2016 [December 24th, 2016]
- Compact Automation - Actuators, Hydraulic Cylinders, Linear ... - December 24th, 2016 [December 24th, 2016]
- What is Home Automation? | Home Automation Systems - December 24th, 2016 [December 24th, 2016]
- Job Seekers - Automation Personnel Services - December 24th, 2016 [December 24th, 2016]
- iAutomation - December 25th, 2016 [December 25th, 2016]
- Beyond Automation - hbr.org - December 25th, 2016 [December 25th, 2016]
- Automation The Car Company Tycoon Game on Steam - December 25th, 2016 [December 25th, 2016]
- Automation - Wikipedia - December 25th, 2016 [December 25th, 2016]
- Build automation - Wikipedia - December 26th, 2016 [December 26th, 2016]
- Home - Enerwave Home Automation - December 27th, 2016 [December 27th, 2016]
- Automation | Technologies | Systems | Integrator ... - December 27th, 2016 [December 27th, 2016]
- Automation - DESHAZO - December 27th, 2016 [December 27th, 2016]
- Custom Automation & Machine Design | Automation GT - December 27th, 2016 [December 27th, 2016]
- IT Automation - BMC - December 27th, 2016 [December 27th, 2016]
- Werner Electric | Automation - January 28th, 2017 [January 28th, 2017]
- Automationtechies | Automation Engineering Recruiting - January 28th, 2017 [January 28th, 2017]
- Automation - Mazak Corporation - January 28th, 2017 [January 28th, 2017]
- Automation | Food Engineering - January 28th, 2017 [January 28th, 2017]
- Test Automation Services for Development of Regression ... - January 28th, 2017 [January 28th, 2017]
- UI Automation Overview - msdn.microsoft.com - February 5th, 2017 [February 5th, 2017]
- The Evolution of Automation and What It Means for the Integration Industry - Commercial Integrator - February 7th, 2017 [February 7th, 2017]
- Automation, robots could replace 250000 public sector workers in the next 15 years - Computer Business Review - February 7th, 2017 [February 7th, 2017]
- New telecom transformation goals require service automation - TechTarget - February 7th, 2017 [February 7th, 2017]
- Automation expected to displace insurance underwriters, real estate brokers - CIO Dive - February 7th, 2017 [February 7th, 2017]
- The Perks Of Automation And The Risks: Why To Think Twice About Getting Into That Driverless Uber - Forbes - February 7th, 2017 [February 7th, 2017]
- Voices Reinventing enterprise finance by overhauling AP automation - Accounting Today - February 7th, 2017 [February 7th, 2017]
- DFLabs Launches the First Security Automation and Orchestration Platform based Upon Supervised Active Intelligence - Business Wire (press release) - February 7th, 2017 [February 7th, 2017]
- VIDEO: Going Big on Automation in a Small Footprint Facility - ENGINEERING.com - February 7th, 2017 [February 7th, 2017]
- Building a better model of human-automation interaction - Phys.org - Phys.Org - February 7th, 2017 [February 7th, 2017]
- Cruise Automation Is Testing an App For Hailing Self-Driving Cars - Fortune - February 8th, 2017 [February 8th, 2017]
- AlixPartners examines automation in manufacturing and logistics management - Logistics Management - February 8th, 2017 [February 8th, 2017]
- Women need to look out for each other in automated workplaces - The Guardian - February 8th, 2017 [February 8th, 2017]
- Automation vs. the H-1B visa program: Which matters to employees? - TechTarget - February 8th, 2017 [February 8th, 2017]
- Automation is the unavoidable future of the economy - The Daily Cougar - February 8th, 2017 [February 8th, 2017]
- Speeders beware: Legislation would allow automation crackdown ... - SFGate - February 9th, 2017 [February 9th, 2017]
- Robots versus bureaucrats: Why public sector work is ripe for automation - Financial Post - February 9th, 2017 [February 9th, 2017]
- Rockwell Automation Surged 10% in January as Growth Picked Up Steam - Motley Fool - February 9th, 2017 [February 9th, 2017]
- Global Medical Automation Market to Reach Approximately $75.6 Billion by 2025 - By End User, Application ... - PR Newswire (press release) - February 10th, 2017 [February 10th, 2017]
- Automation 'key' to advancing Thai production - The Nation - February 10th, 2017 [February 10th, 2017]
- WorkWave Releases New Lead Management And Marketing ... - PR Newswire (press release) - February 10th, 2017 [February 10th, 2017]
- 'We employ insane levels of automation' Kris Canekeratne - Times of India - February 10th, 2017 [February 10th, 2017]
- Most people are optimistic about workplace automation, social data suggests - ZDNet - February 10th, 2017 [February 10th, 2017]
- Yes, there's a job creation argument for automation and technology ... - The Hill (blog) - February 10th, 2017 [February 10th, 2017]
- Technobabble: Automation and the modern worker - CIO Dive - February 10th, 2017 [February 10th, 2017]
- Improving Behavior Through Automation of Vehicle Systems - School Transportation News (blog) - February 11th, 2017 [February 11th, 2017]
- Automation Nightmare: Philosopher Warns We Are Creating a World Without Consciousness - Big Think - February 11th, 2017 [February 11th, 2017]
- Why Don't We See More Automation in Federal Networks? - Nextgov - February 11th, 2017 [February 11th, 2017]
- Automation can revitalize the US workforce - Fox News - February 11th, 2017 [February 11th, 2017]
- Readers Write (Feb. 12): The moose population; jobs, start-ups and automation; diversity in the funny pages - Minneapolis Star Tribune - February 12th, 2017 [February 12th, 2017]
- Automation can replace bureaucrats and save taxpayers money - Hot Air - February 12th, 2017 [February 12th, 2017]
- TigerStop hopes to ride automation to new heights - The Columbian - February 12th, 2017 [February 12th, 2017]
- Your Most Valuable Resource is Time Get More of it through Automation - CMS Critic (press release) (blog) - February 13th, 2017 [February 13th, 2017]
- What Does Device Automation Mean for Users? - Medical Device and Diagnostics Industry (blog) - February 13th, 2017 [February 13th, 2017]
- How To Beat Automation And Not Lose Your Job - Forbes - February 13th, 2017 [February 13th, 2017]
- Logistics firm gets automation boost - The Straits Times - February 14th, 2017 [February 14th, 2017]
- PP Control & Automation launch new video to kick-start exciting plans for 2017 - Manufacturer.com - February 14th, 2017 [February 14th, 2017]
- Automation's Impace on Data Center Monitoring Alerts - The Data Center Journal - February 14th, 2017 [February 14th, 2017]
- Hollysys Automation Technologies Reports Unaudited Financial Results for the First Half Year and the Second Quarter ... - PR Newswire (press release) - February 15th, 2017 [February 15th, 2017]
- 4 Automation Hacks to Save You Money and Manpower - Yahoo Finance - February 15th, 2017 [February 15th, 2017]
- Istuary Innovation Group and Bluewrist Partner to Bring Robotics and Automation into China's Manufacturing Sector - Yahoo Finance - February 15th, 2017 [February 15th, 2017]
- Redwood Software Named a Strong Performer in Independent Robotic Process Automation (RPA) Report - Yahoo Finance - February 15th, 2017 [February 15th, 2017]
- Boeing ramps up automation, innovation as it readies 737MAX | The ... - The Seattle Times - February 15th, 2017 [February 15th, 2017]
- Robots and AI are coming for our jobs, but can augmentation save us from automation? - Digital Trends - February 15th, 2017 [February 15th, 2017]
- The Impact of Bad Data in Automation: Why Quality Management is Critical - R & D Magazine - February 16th, 2017 [February 16th, 2017]
- Automation: Are We Empowering Human Interaction Or Displacing It? - Business 2 Community - February 16th, 2017 [February 16th, 2017]
- Life in the Fast LaneAutomation with Software-Defined Intelligence - InfoWorld - February 16th, 2017 [February 16th, 2017]
- Luddite Lefty Journalists Apparently Think Workplace Automation is Conservatives' Fault [VIDEO] - Daily Caller - February 16th, 2017 [February 16th, 2017]
- Will automation define the future of network technology? - TechTarget - February 16th, 2017 [February 16th, 2017]
- Editorial: Improving automation - The Motorship - February 17th, 2017 [February 17th, 2017]
- TigerText Unveils Role-based Scheduling Automation, Amazon Alexa integration - HIT Consultant - February 17th, 2017 [February 17th, 2017]
- 89% people want automation at workplace: Adobe - Economic Times - February 18th, 2017 [February 18th, 2017]
- Delta veers to EV parts, automation - Bangkok Post - February 18th, 2017 [February 18th, 2017]
- Robotic process automation makes nearshore outsourcing more ... - CIO - February 18th, 2017 [February 18th, 2017]
- The working-class job that Trump could save from automation - Washington Post - February 18th, 2017 [February 18th, 2017]
- China must be ready for automation - Basic Income News - February 18th, 2017 [February 18th, 2017]
- Bill Gates Says Robots Should Be Taxed Like Workers - Fortune - February 18th, 2017 [February 18th, 2017]
- Trump and automation challenge India's IT industry - VentureBeat - February 18th, 2017 [February 18th, 2017]
- Both Trump and Automation Are Challenging India's IT Industry - Fortune - February 20th, 2017 [February 20th, 2017]
- 89% people want automation at workplace: Adobe - ETCIO.com - February 20th, 2017 [February 20th, 2017]