A Tale of Two SOCs
Learn how integrated investments in people, process, and technology separate high- and low- performing security operations teams in the 2020 Devo SOC Performance Report™.
With research conducted by the Ponemon Institute, the 2020 Devo SOC Performance Report examines how the security operations center is changing, and identifies the gaps in people, process, and technology between high- and low-performing SOCs. These gaps put organizations with low-performing SOCs at greater risk of a potentially devastating cyberattack.
The SOC is a difficult place to work. 78% of respondents rate it as “very painful,” up from 70% the prior year. SOCs face myriad challenges in hiring, developing, and retaining the individuals who make or break the success of the organization.
The reporting structure of the SOC can vary from organization to organization. But the common criteria for success is strong alignment and consistent processes across IT, business, and security teams.
73% of high-performing SOCs have strong alignment to business objectives, enabling them to focus on the threats that matter most
64% combat turf disputes or silo issues between IT and the SOC, resulting in 70% of respondents lacking visibility into IT infrastructure
Investments in SOC technology are on the rise, but on their own, won’t increase SOC effectiveness. To be successful, an organization must be willing to invest and integrate people, process, and technology.
Embrace new technologies.
80% of high-performing SOCs are likely or very likely to invest in new technologies
Automate to improve efficiency.
70% cite the need for greater automation to reduce time-consuming tasks that contribute to analyst burnout