it will create a team that is responsive and able to adapt as the work environment shifts due to challenges
            like working with a distributed workforce and ensuring the right collaboration and communications tools
            and culture are in place.

            The report also reveals a significant decline in the ability to do threat modeling in both the U.S. and U.K.
            SOCs.  Threat modeling is the systematic approach to identifying and prioritizing potential security threats
            and designing countermeasures to prevent them. The data suggests threat modeling doesn’t have an
            agreed upon standard, and most analysts perform it infrequently or not at all.

            Additionally, the ability to conduct incident analysis and budget and resource allocation for both countries
            have declined from the previous year.



























            Figure 4: U.S. and U.K. SOCs reported significant declines in their ability to do threat modeling, incident
            analysis and budget/resource allocation in YoY change.



            The  findings  also  show  that  when  asked  to  rate  pain  points,  inexperienced  staff  and  time  spent  on
            reporting/documentation  were  common  issues  for  managers  and  frontline  employees  but  not  for
            executives.


            Lending credence again to the statement, “you can’t protect what you can’t see,” senior leaders noted
            that the lack of visibility and not having a good list of assets were their most significant pain points.


















            Cyber Defense eMagazine –July 2020 Edition                                                                                                                                                                                                                         57
            Copyright © 2020, Cyber Defense Magazine.  All rights reserved worldwide.