For many years, security professionals have talked about the OODA loop. Devised by Colonel John Boyd, it describes a decision-making cycle that fighter pilots apply in dog fights, and when mastered, allows them to outwit adversaries. The acronym stands for Observe, Orient, Decide and Act, and if you can go through this decision cycle faster than your adversary, you can defeat them.
The same theory applies to security operations and, unfortunately, right now we are operating much slower than our adversaries. So, why do our security operations lack the agility it takes to observe, orient, decide and act faster than our adversaries?