In this four-part series, we’ll explore key considerations and strategies for 2021 detection and response planning, and ways InsightIDR, Managed Detection and Response Services (MDR), and InsightConnect can help drive increased efficiency and future-proof your SOC going into the new year.
Despite a year of “new normals,” one thing that most teams can still count on this fall is annual security planning. In fact, many teams are ramping up their security planning early this year as they revisit changes introduced in the wake of the COVID-19 pandemic. In addition to supporting growing remote workforces, many SOCs are facing increased budget scrutiny and pressure to demonstrate ROI as they go into 2021.
To kick off this series, we sat down with Jeffrey Gardner, former Information Security Officer at a healthcare company, and recently appointed Practice Advisor for our Detection and Response portfolio here at Rapid7. These are highlights from our conversation and Jeffrey’s tips and advice for security planning this year.
Q: For new CISOs or security leaders out there who might be approaching security planning for the first time, how should they start?
Jeffrey: Security planning isn’t a static thing—it needs to be tailored to the company, where you are at, and where you want to go. Team leaders should be reflective and retrospective of the previous year and where SecOps are across the maturity lifecycle. There are three maturity categories that teams can fall in:
Reactive: Many new or small teams ..
Support the originator by clicking the read the rest link below.
