3 min
Detection and Response
2021 Detection and Response Planning, Part 3: Why 2021 Is the Year for SOC Automation
In this third installment of our series around 2021 security planning, we’re focused on SOC automation.
5 min
Detection and Response
2021 Detection and Response Planning, Part 2: Driving SOC Efficiency With a Detections-First Approach to SIEM
In this installment of our security planning series, we’ll explore the importance of reliable detections to drive an efficient security program forward.
9 min
Security Operations (SOC)
Moving Toward a Better Signature Metric in SOCs: Detection Efficacy
In this blog, we break-down the "Detection Efficacy" metric within the Security Operation Center (SOC).
3 min
Security Operations (SOC)
Intro to the SOC Visibility Triad
In this blog, we break-down the three pillars of the Security Operations Center (SOC) Visibility Triad.
3 min
Security Operations (SOC)
Building a Culture of Security Awareness: How to Use Performance Metrics to Communicate SOC Effectiveness Throughout Your Org
In this blog, we break down which SOC performance metrics to report to your organization and how to measure your impact.
5 min
Security Operations (SOC)
How to Develop a Common Language for Security Buy-In Across Your Business
In this blog, we break-down what keeps organizations from advancing their security programs, and how businesses can establish security priorities.
4 min
Managed Detection and Response (MDR)
A Day in the Life of a Rapid7 SOC Analyst
Today, we are diving into a day in the life of a Rapid7 security operations center (SOC) analyst, specifically around threat detection and response.
3 min
Security Operations
Rapid7 Leads All 'Strong Performers' in 2018 Forrester Wave for Emerging MSSPs
We’re proud to be recognized in the Forrester Wave as the leader in the “Strong Performer” category and to score second highest overall current offering for our Managed Security Services.
4 min
InsightIDR
How to Set Up Your Security Operations Center (SOC) for Success
Whether you’re looking to add coverage or are experiencing challenges with your existing security operations center (SOC), it's important to consider these factors before making a decision.
4 min
Komand
The Real Cost of Manual Security Operations
More tools, processes, or people doesn’t always equal better security. In fact,
the more you have to manage, the costlier it can get. But as threats evolve,
technologies and processes change, and so too must security operations.
If your security operations are highly manual today, this post will help you
visualize what that is costing your organization, not just from a monetary
standpoint, but from an efficiency and speed perspective, too. We’ll start by
looking at the three major areas of secu
3 min
Automation and Orchestration
3 Steps to Transform Your Security Operations with Security Orchestration
Considering the sheer number of security tools and threats out there today,
security operations
[https://www.rapid7.com/fundamentals/security-operations-center/] can quickly
get overwhelming if you don’t have a way to manage the complexities in a
systematic fashion. Much of this management between tools and processes is done
manually by people today, but this way isn’t exactly sustainable in the long
term for security teams — especially coupled with an increasing volume of
alerts, events, and s
6 min
Komand
SOC Series: How to Make a Security Operations Center More Efficient
You have your security operations center (SOC)
[https://www.rapid7.com/fundamentals/security-operations-center/] in place, now
what?
Creating a SOC is not a cheap undertaking, so to be sure your investment in
people and resources pays off, your next task is to make it as efficient as
possible. Efficiency drives time-to-response, and with intrusion detection and
incident response, optimizing for this metric is crucial. Over the long term, it
also becomes more cost-effective.
I’ve seen the good
3 min
Komand
SOC Series: How to Structure and Build a Security Operations Center
Building an effective security operations center (SOC)
[https://www.rapid7.com/fundamentals/security-operations-center/] requires
organizing internal resources in a way that improves communication and increases
efficiencies. Adding to a former post,When to Set Up a Security Operations
Center
[https://www.rapid7.com/blog/post/2016/06/01/to-soc-or-not-to-soc-when-to-set-up-a-security-operations-center/]
, we're now offering a framework for organizing the three key functions of a
SOC: people, proce
3 min
Komand
SOC Series: When to Setup a Security Operations Center
To build a successful security function, you need to coordinate across people,
processes, and technology. And the stakes have never been higher than they are
today when it comes to information security, which is why many businesses are
looking for ways to centralize security operations by way of a security
operations center (SOC)
[https://www.rapid7.com/fundamentals/security-operations-center/]
(SOC Series: When to Setup a Security Operation).
When it comes to achieving cohesion, SOCs are a ma
4 min
Komand
What Security Operations Teams Can Learn From Modern Productivity Software
Between your devices, how many apps do you have?The answer for many is
dozens, if not hundreds. And many are designed to help us be more efficient: to
keep track of growing to do lists, manage complex work tasks, or streamline
communication with teams. The trouble is, many of these apps don’t talk to each
other very neatly, efficiently, or at all.
So it’s no wonder that when the app orchestration solution IFTTT was launched,
over one million tasks
[http://blog.ifttt.com/post/22129854971/one-mil
