SOC Pros Respond to Training and “Playing” with New Tech More than Money: SANS

Spread the love

Money may talk for employees considering an exit from most professions, but according to new research, that doesn’t apply to security operations professionals.
Instead, according to a new Siemplify-sponsored survey report titled “Closing the Critical Skills Gap for Modern and Effective Security Operations Centers (SOCs),” the SANS Institute says it has found that the best way for organizations to resist frequent SecOps team attrition and turnover is not through raising salaries but by developing skills, investing in training, and giving employees the chance to tinker with new security tools and technologies.
This combination of employee skills building and engagement activities leads to staff longevity, which SANS has found to be the most accurate predictor of a “strong cybersecurity program” and a team’s ability to efficiently and effectively address emerging threats and choreograph new techniques and processes for handling these risks.
[Free SANS Survey Download] Closing the Critical Skills Gap for Modern and Effective SOCs
Of course, amid a pandemic-induced recession, only one-third of respondents to the SANS survey expect to be hiring in 2020, but the institute’s findings seem to indicate that regardless of the economic climate, SOC teams who collaborate well together, stay together.
This includes, according to SANS, providing staff with:

A well-defined career path to avoid “alert burnout” and demonstrate advancement.
Sufficient funding for training and skills enhancement.
Opportunities to play with and develop new security tools and techniques.

Said SANS: “One common pushback against security training is a belief that employees will get trained and then leave the company for a higher paying job. However, the below-average attrition rates disprove this, and SANS’ qualitative interviews with SOC managers tend to show that the highest skilled teams stay at their companies the longest.
One enabler – security orchestration, automation and response (SOAR) – actually answers all of the factors typically representative of stable and long-standing SOC teams.
For one, SOAR empowers SOC teams to to automate level-one tasks and accelerate level-two and three tasks, allowing you to eliminate manual, repetitive work (often best personified by seemingly non-stop alerts) and focus your talent on higher-value, strategic initiatives requiring greater proficiency.
In addition, SOAR presents a “force multiplier” SOC technology for which there is a great interest among security operations teams. The optimal SOAR is a workbench that fulfills end-to-end security operations appetites, from providing a simple and intuitive analyst experience to delivering powerful capabilities for engineers and advanced users.
To download the full SANS report, containing timely insights and trends, click here.
Dan Kaplan is director of content at Siemplify.
The post SOC Pros Respond to Training and “Playing” with New Tech More than Money: SANS appeared first on Siemplify.

X ITM Cloud News


Leave a Reply

Next Post

EU sanctions China and Russia over cyber attacks

Fri Jul 31 , 2020
Spread the love          X ITM Cloud News

Cloud Computing – Consultancy – Development – Hosting – APIs – Legacy Systems

X-ITM Technology helps our customers across the entire enterprise technology stack with differentiated industry solutions. We modernize IT, optimize data architectures, and make everything secure, scalable and orchestrated across public, private and hybrid clouds.

This image has an empty alt attribute; its file name is x-itmdc.jpg

The enterprise technology stack includes ITO; Cloud and Security Services; Applications and Industry IP; Data, Analytics and Engineering Services; and Advisory.

Watch an animation of  X-ITM‘s Enterprise Technology Stack

We combine years of experience running mission-critical systems with the latest digital innovations to deliver better business outcomes and new levels of performance, competitiveness and experiences for our customers and their stakeholders.

X-ITM invests in three key drivers of growth: People, Customers and Operational Execution.

The company’s global scale, talent and innovation platforms serve 6,000 private and public-sector clients in 70 countries.

X-ITM’s extensive partner network helps drive collaboration and leverage technology independence. The company has established more than 200 industry-leading global Partner Network relationships, including 15 strategic partners: Amazon Web Services, AT&T, Dell Technologies, Google Cloud, HCL, HP, HPE, IBM, Micro Focus, Microsoft, Oracle, PwC, SAP, ServiceNow and VMware