This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
This Website Uses Cookies
By closing this message or continuing to use our site, you agree to our cookie policy. Learn More
This website requires certain cookies to work and uses other cookies to help you have the best experience. By visiting this website, certain cookies have already been set, which you may delete and block. By closing this message or continuing to use our site, you agree to the use of cookies. Visit our updated privacy and cookie policy to learn more.
Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
    • Security Blog
    • Newsletter
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • More
  • PHYSICAL
    • Access Management
    • Video Surveillance
    • Identity Management
    • More
  • CYBER
    • Cybersecurity News
    • More
  • SECTORS
    • Education: University
    • Hospitals & Medical Centers
    • Critical Infrastructure
    • More
  • EXCLUSIVES
    • Top Cybersecurity Leaders
    • The Security Benchmark Report
    • Most Influential People in Security
    • Top Guard and Security Officer Companies
    • The Security Leadership Issue
    • Women in Security
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MORE
    • Call for Entries
    • Podcasts
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Photo Galleries
    • Polls
    • Classifieds & Job Listings
    • White Papers
    • Store
    • Sponsor Insights
    • Continuing Education
  • INFOCENTERS
    • Put the Smart In Building Security
  • EMAGAZINE
    • eMagazine
    • This Month's Content
    • Contact Us
      • Editorial Guidelines
    • Advertise
    • Subscribe
Technologies & SolutionsManagementPhysicalCybersecuritySecurity NewswireCybersecurity News

Turf battles and silo issues damage SOC ROI

The Johnson Controls GSOC; security leadership, security command center
June 23, 2020

A new survey on the current state of security operations center (SOC) performance has found that while some organizations have increased funding, the overall gains have been meager, and the most significant issues have not only persisted, but worsened.

The second annual Devo SOC Performance ReportTM, based on a survey conducted by Ponemon Institute also found that 60 percent of SOC team members are still considering changing careers or leaving their jobs due to stress.

On the positive side, the importance of investing in a SOC remains high, with 72 percent of respondents categorizing the SOC as “essential” or “very important” to their organization’s overall cybersecurity strategy, up 5 percent year-over-year, says the report. Additionally, the average annual cybersecurity budget for organizations rose $6 million to $31 million, with the SOC representing more than one-third of that total. For respondents whose organizations have invested in people, process, and technology, the performance differences are stark. Strong business alignment (73 percent) and extensive training (67percent) help high-performing SOCs more than double the effectiveness of their lower-performing brethren. However, the pain and barriers facing SOC teams are universal and worsening, with higher performers citing 10% more pain at an extreme level (9-10 on a 10-point scale), and virtually no difference in the level below that (7-8).

The major areas of pain and resistance include:

  • 70 percent suffer a lack of visibility into the IT infrastructure (up from 65 percent)
  • 64 percent combat turf or silo issues between IT and the SOC (up from 57percent)
  • 71 percent need greater automation (up from 67 percent), especially as they continue to spend substantial manual cycles on tasks such as alert management (47 percent), evidence gathering (50 percent), and malware protection and defense (50 percent)
  • Environmental factors are driving substantially higher pain, including information overload

The survey also found that people, process and technology are misaligned and inefficient:

  • Organizations have too many tools and more than half don’t have all the data necessary, nor the ability to capture actionable intelligence
  • While 76 percent say training/retention is highly important, more than 50 percent have no formal programs in place, and more than 50% cite the lack of skilled personnel as a major factor in SOC inefficiency
  • Mean time to response (MTTR) remains unacceptably high, with 39 percent saying their average time to resolve an incident is “months or even years”

Among the lessons that can be learned from the findings, the top three actions cited to demonstrably alleviate SOC analyst pain are greater workflow automation (71 percent), implementing advanced analytics/machine learning (63 percent) and access to more out-of-the-box content (55 percent).

 

KEYWORDS: cyber security emergency management IT infrastructure Security Operations Center (SOC)

Share This Story


Subscribe to Security Magazine
Subscribe For Free!
  • Security eNewsletter & Other eNews Alerts
  • Online Registration
  • Mobile App
  • Subscription Customer Service
  • eMagazine Subscriptions
  • Manage My Preferences

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company. Interested in participating in our Sponsored Content section? Contact your local rep.

close
  • doctor with cellphone.jpg
    Sponsored byAxis

    How remote patient monitoring safeguards patient care and optimizes workflows

  • security
    Sponsored byAMAROK LLC

    How an Investment in Security Can Prevent Unplanned Expenses

  • solar enews
    Sponsored byAxis

    Sustainably meeting the security and operational needs of solar farms

Popular Stories

Security's Most Influential People in Security 2023

Security's Most Influential People in Security 2023

Human hand and AI Hand

Study finds increase in cybersecurity attacks fueled by generative AI

open computer with green vertical text

Amerita and PharMerica announce data breach

Ava Cooper-Davis Global and U.S. Chief Security Officer Deloitte

Ava Cooper-Davis | Most Influential People in Security 2023

vertical white lines on dark screen

CISA and FBI release joint cybersecurity advisory

SEC Exterro webinar

SEC Axis Communications webinar

Most Influential People in Security 2023

Events

December 6, 2022

Building a Resilient Enterprise

ON DEMAND: Business-impacting events such as severe weather, man-made disasters, and supply chain disruption are increasing in frequency and making impacts around the globe. 

June 29, 2023

From Crisis Response to Proactive Defense: Shifting the Paradigm of Threat Intelligence

In today's rapidly evolving security landscape, organizations face an ever-growing array of disruptive events, security threats and risks. Traditional reactive approaches to security intelligence often leave businesses vulnerable and ill-prepared to anticipate and mitigate emerging threats that could impact the safety of their people, facilities or operations.

View All Submit An Event

Products

Effective Security Management, 7th Edition

Effective Security Management, 7th Edition

 Effective Security Management, 5e, teaches practicing security professionals how to build their careers by mastering the fundamentals of good management. Charles Sennewald brings a time-tested blend of common sense, wisdom, and humor to this bestselling introduction to workplace dynamics. 

See More Products

Average Security Professionals Salary

Related Articles

  • rackspace-wargames

    Lose Battles, But Win the War: Devising a Grand Strategy for Security

    See More
  • SEC1219-cyber-Feat-slide1_900px

    Security budget battles in the age of COVID-19

    See More
  • The Merwin Dam

    Critical Infrastructure Sector Battles Growing Variety of Security Threats

    See More
×

Get our new eMagazine delivered to your inbox every month.

Stay in the know on the latest enterprise risk and security industry trends.

SUBSCRIBE TODAY!
  • Want More
    • Connect
    • Partners
    • Subscribe
  • Privacy
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY
    • UPDATE MY PREFERENCES
  • Resources
    • Editorial Guidelines
    • Security Group
    • Market Research
    • Custom Content & Marketing Services
    • Survey And Sample

Copyright ©2023. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing