The ThreatQuotient Blog

At ThreatQuotient, we write a lot about security automation. Most recently, we’ve discussed how our data-driven approach to automation helps enable extended detection and response (XDR) in all phases of security operations including detection, investigation and response.

Globally, the cyber threat level to organizations remains high and the current situation only serves to highlight this further.

After more than two years of having our days filled with Zoom meetings, many of us in the cybersecurity industry have been eager to get back to in-person events and conferences to reconnect with colleagues and create and strengthen business relationships.

“Automation” has become a buzzword in cybersecurity circles. That’s not surprising in an environment where security specialists are in short supply and under intense pressure to defend the business against a huge variety of threats from innumerable different sources.

To simplify XDR further, it can be broken up into individual components such as EDR, network firewalls, web gateways, IPS and SIEM.

Below you’ll find our top three blogs for the first half of 2022 and a brief summary of each. Click on the links that grab your attention and catch up on information you may have missed that can help…

The cybersecurity industry has talked about security automation for years. We’ve grappled with what, when and how to automate. We’ve debated the human vs machine topic.

If you work in an organization, you’ve probably had to take a cybersecurity training course at some point during your time there.

Recently, ThreatQuotient hosted an interactive discussion regarding security orchestration and cyber security automation adoption – what it is, what it’s meant to do, and why it can present a challenge for security teams to set up and maintain.

In the past year, research indicates that nearly a third of organizations have accelerated their plans to automate key security and IR processes, while another 85% plan on automating them in the next 12 months.

This year’s theme for RSAC was “Transform” and FIC’s theme was “Shaping Europe’s Digital Future.” Although the wording was different, the overarching message was similar.

The threat landscape has escalated over the past two years between the pandemic and the evolving geopolitical environment.

Take a closer look at what a data-driven approach means to the automation of SOC workflows and how it has influenced the product and design decisions of ThreatQ and ThreatQ TDR Orchestrator.