Swimlane, a leader in security orchestration, automation and response (SOAR), today staged a mock protest at the 2019 RSA Conference on behalf of understaffed and overworked security operations teams that are inundated by security alerts and the tedious and time-consuming manual incident response processes they perform when their organization doesnt deploy an automated platform.
The mock protesters swarmed Howard Street in front of the conference, carrying picket signs displaying various sayings and images, including comically large scissors and glue, shouting slogans such as, we need to do our jobs with haste, no more copy-paste!
Ive worked in security operations for many different verticals, and I understand the struggle that comes with never being able to dig yourself out from under the unending onslaught of alerts, notifications and unplanned tasks, said Cody Cornell, Swimlanes co-founder and CEO. Automation empowers bogged down analysts by enabling them with the resources to complete more thoughtful tasks for which they were originally trainedproactive threat hunting and more in-depth investigations and analyses.
A recent report from Cybersecurity Ventures estimates that there will be 3.5 million unfilled cybersecurity jobs by 2021. That shortage ensures many security teams will struggle to implement important security capabilities and respond to alerts effectively, which leaves organizations vulnerable to increasingly sophisticated bad actors. In fact, a report from Enterprise Management Associates (EMA) found that 79 percent of security teams feel overwhelmed by the volume of threat alerts. Considering that a survey at last years RSA Conference revealed more than half (55 percent) of surveyed organizations see in excess of 10,000 such alerts and 27 percent of enterprise security teams see more than 1 million alerts per day, the demand for automation is an inevitability.
This is a real problem and it wont fix itself, Cornell said. RSA Conference is the place for security teams to come together for learning and training and is the ideal place to talk about solutions to problems in the industry. We are serious about our mission to improve the problems plaguing security operations teams everywhere, and this protest is an example of our dedication to raise awareness about major problems in our industry.
In addition to the limited resources hindering the work of security operations centers (SOCs), many organizations face similar threats and duplicate efforts within their respective incident response processes. As such, a significant amount of threat intelligence can be shared to benefit the larger security community.
Security professionals and organizations are outnumbered, said Cornell. We need to work together to bolster our collective security posture by sharing investigative information beyond specific IOCs [indicators of compromise].
To assist in collaboration and enable security information sharing, Swimlane recently launched Hands-Free Security, a podcast series that convenes industry thought leaders and subject matter experts to discuss security operations (SecOps) strategies and how SOAR can help.
While many security vendors offer some form of automation, Swimlanes SOAR platform enhances the optimization of SOCs by integrating with their existing people, processes and technology, which allows them to use the platform on their terms to fit their unique needs rather than a generic out-of-the box option. The platform centralizes all relevant event data in one platform and automates standardized workflows, empowering SecOps teams with machine-speed decision-making throughout the entire incident response process.
Swimlane is at the forefront of the growing market of security automation, orchestration and response (SOAR) solutions and was founded to deliver scalable and flexible security solutions to organizations struggling with alert fatigue, vendor proliferation and chronic staffing shortages. Swimlanes solution helps organizations address all security operations (SecOps) needs, including prioritizing alerts, orchestrating tools and automating the remediation of threatsimproving performance across the entire organization. Swimlane is headquartered in Denver, Colorado with operations throughout North America and Europe. For more information, visit www.Swimlane.com.
About RSA Conference
RSA Conference is the premier series of global events and onDemand programs where the world talks security and leadership gathers, advances and emerges. Whether attending in the U.S., the EMEA region, the Asia-Pacific region or online, RSA Conference events are where the security industry converges to discuss current and future concerns and get access to the people, content and ideas that help enable individuals and companies to win, grow and do their best. Its about bringing all people in the cybersecurity industry together and empowering the collective we of the cybersecurity industry to stand against cyberthreats around the world. RSA Conference is the ultimate marketplace for the latest technologies and hands-on educational opportunities that help industry professionals discover how to make their companies more secure while showcasing the most enterprising, influential and thought-provoking thinkers and leaders in security today. For information on events, online programming and the most up-to-date news pertaining to the information security industry, visit www.rsaconference.com.