Home Cyber Security Asia 2021 Building an Effective Security Program with Limited Resources

Building an Effective Security Program with Limited Resources

Understanding the challenges and modules to create an effective way to run a security operating centre can be executed with limited resources.

by Shah Farouq
69 views
How to Build An Effective Security Program

Leonardo Hutabarat, Head Of Sales Engineering, LOGRHYTHM states that by understanding the challenges and modules to create an effective way to run a security operating centre can be executed with limited resources.

“The main thing is you have to leverage on automation and machine learning on building on your SOC. Not everyone can afford to invest in the SOC 24/7 team so they need to leverage on automation.

“They need to create a system that is able to detect threat swiftly and completely. We need to make sure that the information that is being fed is not only talking about logs and event because those are just after incidents information, you need to have real-time information so network monitoring and detection is a must,” he shared.

He further shared the second step to take in order to leverage automation and machine learning to be more effective is to reduce false positives. “We will gather a lot of information so you need to be able to correlate and to reduce the noise.

“Either you are using your own intelligence or using your correlations role or signature but you must also be able to use machine learning.

“You need to teach the machine on how to differentiate the noise and the real-time incident,” he said.

He later explained that the last step is to be able to respond to the threat as soon as possible.

“So in order for you to be able to leverage this automation and machine learning approach from detecting, reducing false positive respond to the threat. You need to be able to combine people, process and technology to achieve your goals,” he shared.

Related Articles

We use cookies to improve user experience, and analyze website traffic. For these reasons, we may share your site usage data with our analytics partners. By clicking “Accept Cookies,” you consent to store on your device all the technologies described in our Cookie Policy. Accept Read More

ESPC on the go

FREE
VIEW