This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
This Website Uses Cookies
By closing this message or continuing to use our site, you agree to our cookie policy. Learn More
This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
      • Featured Products
    • Security Blog
    • Newsletter
    • Web Exclusives
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • More
  • PHYSICAL
    • Access Management
    • Video Surveillance
    • Identity Management
    • More
  • CYBER
    • Cybersecurity News
    • More
  • SECTORS
    • Education: University
    • Hospitals & Medical Centers
    • Critical Infrastructure
    • More
  • EXCLUSIVES
    • Top Cybersecurity Leaders
    • The Security Benchmark Report
    • Most Influential People in Security
    • Top Guard and Security Officer Companies
    • The Security Leadership Issue
    • Women in Security
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MORE
    • Call for Entries
    • Podcasts
    • Videos
      • Cybersecurity & Geopolitical Vodcast
    • Photo Galleries
    • Polls
    • Classifieds & Job Listings
    • White Papers
    • Store
    • Sponsor Insights
    • Continuing Education
  • INFOCENTERS
    • Put the Smart In Building Security
    • Video Security You Can Trust
  • EMAGAZINE
    • eMagazine
    • This Month's Content
    • Contact Us
      • Editorial Guidelines
    • Advertise
    • Subscribe
Technologies & SolutionsManagementPhysicalCybersecuritySecurity NewswireCybersecurity News

Turf battles and silo issues damage SOC ROI

The Johnson Controls GSOC
June 23, 2020
Print

A new survey on the current state of security operations center (SOC) performance has found that while some organizations have increased funding, the overall gains have been meager, and the most significant issues have not only persisted, but worsened.

The second annual Devo SOC Performance ReportTM, based on a survey conducted by Ponemon Institute also found that 60 percent of SOC team members are still considering changing careers or leaving their jobs due to stress.

On the positive side, the importance of investing in a SOC remains high, with 72 percent of respondents categorizing the SOC as “essential” or “very important” to their organization’s overall cybersecurity strategy, up 5 percent year-over-year, says the report. Additionally, the average annual cybersecurity budget for organizations rose $6 million to $31 million, with the SOC representing more than one-third of that total. For respondents whose organizations have invested in people, process, and technology, the performance differences are stark. Strong business alignment (73 percent) and extensive training (67percent) help high-performing SOCs more than double the effectiveness of their lower-performing brethren. However, the pain and barriers facing SOC teams are universal and worsening, with higher performers citing 10% more pain at an extreme level (9-10 on a 10-point scale), and virtually no difference in the level below that (7-8).

The major areas of pain and resistance include:

  • 70 percent suffer a lack of visibility into the IT infrastructure (up from 65 percent)
  • 64 percent combat turf or silo issues between IT and the SOC (up from 57percent)
  • 71 percent need greater automation (up from 67 percent), especially as they continue to spend substantial manual cycles on tasks such as alert management (47 percent), evidence gathering (50 percent), and malware protection and defense (50 percent)
  • Environmental factors are driving substantially higher pain, including information overload

The survey also found that people, process and technology are misaligned and inefficient:

  • Organizations have too many tools and more than half don’t have all the data necessary, nor the ability to capture actionable intelligence
  • While 76 percent say training/retention is highly important, more than 50 percent have no formal programs in place, and more than 50% cite the lack of skilled personnel as a major factor in SOC inefficiency
  • Mean time to response (MTTR) remains unacceptably high, with 39 percent saying their average time to resolve an incident is “months or even years”

Among the lessons that can be learned from the findings, the top three actions cited to demonstrably alleviate SOC analyst pain are greater workflow automation (71 percent), implementing advanced analytics/machine learning (63 percent) and access to more out-of-the-box content (55 percent).

 

KEYWORDS: cyber security emergency management IT infrastructure Security Operations Center (SOC)

Share This Story

Print

Subscribe to Security Magazine

Subscribe For Free!
  • Security eNewsletter & Other eNews Alerts
  • Online Registration
  • Mobile App
  • Subscription Customer Service
  • eMagazine Subscriptions
  • Manage My Preferences

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company. Interested in participating in our Sponsored Content section? Contact your local rep.

close
  • security office
    Sponsored byExperian

    Taking a Personal Approach to Identity Will Mitigate Fraud Risk & Ensure a Great Customer Experience

  • Cloud Security
    Sponsored byConvergeOne

    The Next Frontier of Security in the Age of Cloud

Popular Stories

2023 Top cyber security leaders

Security's 2023 Top Cybersecurity Leaders

Empty conference room

Cyber risk is a business risk

map of US with lights over major cities

Security leaders share thoughts on Biden's cyber strategy announcement

laptop phone.jpg

31% of organizations had users fall for phishing attack

CT scanner

Cybersecurity threats to medical devices are a growing concern

Most Influential

Events

December 6, 2022

Building a Resilient Enterprise

ON DEMAND: Business-impacting events such as severe weather, man-made disasters, and supply chain disruption are increasing in frequency and making impacts around the globe. 

April 6, 2023

Do Employees Feel Safe at Work? New Data for 2023

Employees don’t feel prepared to navigate an increasingly dangerous world, and they expect their employers to not only care about their personal safety, but to actively keep them safe. 

View All Submit An Event

Products

Effective Security Management, 7th Edition

Effective Security Management, 7th Edition

 Effective Security Management, 5e, teaches practicing security professionals how to build their careers by mastering the fundamentals of good management. Charles Sennewald brings a time-tested blend of common sense, wisdom, and humor to this bestselling introduction to workplace dynamics. 

See More Products
Security Most Influential

Related Articles

  • rackspace-wargames

    Lose Battles, But Win the War: Devising a Grand Strategy for Security

    See More
  • SEC1219-cyber-Feat-slide1_900px

    Security budget battles in the age of COVID-19

    See More
  • The Merwin Dam

    Critical Infrastructure Sector Battles Growing Variety of Security Threats

    See More

Events

View AllSubmit An Event
  • June 29, 2022

    How to Build and Scale a Security Operations Center (SOC)

    ON DEMAND: Security Operations Centers (SOCs) are a crucial component of safety and security culture. They support many strategic business objectives, from lowering costs and minimizing risk to improving employee trust and morale.
View AllSubmit An Event
×

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.

SUBSCRIBE TODAY!
  • Want More
    • Connect
    • Partners
    • Subscribe
  • Privacy
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY
    • UPDATE MY PREFERENCES
  • Resources
    • Editorial Guidelines
    • Security Group
    • Market Research
    • Custom Content & Marketing Services
    • Survey And Sample

Copyright ©2023. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing