Page 57 - Cyber Defense eMagazine for July 2020
P. 57
it will create a team that is responsive and able to adapt as the work environment shifts due to challenges
like working with a distributed workforce and ensuring the right collaboration and communications tools
and culture are in place.
The report also reveals a significant decline in the ability to do threat modeling in both the U.S. and U.K.
SOCs. Threat modeling is the systematic approach to identifying and prioritizing potential security threats
and designing countermeasures to prevent them. The data suggests threat modeling doesn’t have an
agreed upon standard, and most analysts perform it infrequently or not at all.
Additionally, the ability to conduct incident analysis and budget and resource allocation for both countries
have declined from the previous year.
Figure 4: U.S. and U.K. SOCs reported significant declines in their ability to do threat modeling, incident
analysis and budget/resource allocation in YoY change.
The findings also show that when asked to rate pain points, inexperienced staff and time spent on
reporting/documentation were common issues for managers and frontline employees but not for
executives.
Lending credence again to the statement, “you can’t protect what you can’t see,” senior leaders noted
that the lack of visibility and not having a good list of assets were their most significant pain points.
Cyber Defense eMagazine –July 2020 Edition 57
Copyright © 2020, Cyber Defense Magazine. All rights reserved worldwide.