What is the future of SIEM solutions and SOC? What are the various products available in the market? How does XDR enhance the efficiency of SIEM. 

Security Operations Center (SOC)Events
682 viewscircle icon2 Comments
Sort by:
EVP - Chief Security Officer in Bankinga year ago

I do not see XDR improving SEIM efficiency. XDR provides more source collection adding enrichment to signals/detections. I find the use of AI has improved efficiency more so than anything that is not normal continuous improvement BAU.  

Group Director of Information Security in Bankinga year ago

The future of these solutions more and more use case based with Agentic AI doing lots of routine configuration changes on perimeter security solutions like, WAF, NGF etc.
Future is also dependent upon adoption of your single cloud, multi-cloud or a combo of on-prem, on-cloud workloads strategy with inhouse vs outsource software development IT strategy. 
XDR is just one tool which SIEM monitors and makes real time decisions in view of developing threats. Depending upon which XDR product you use (Microsft's Defender/ Crowdstrike etc), you may want to subscribe to their managed XDR services too rather than building your own SOC team to manage it.

Content you might like

Which of these leading security practices do you plan to focus on the most in 2022?

Proactively updating technology17%

Integrating security technology41%

Accelerating incident response17%

Improving the accuracy of threat detection15%

Ensuring prompt disaster recovery8%

Other; comment below

View Results

How are you deciding which SOC or security operations work should be augmented or even fully automated with AI? Which tasks should remain entirely under human control and which should only require human oversight?

Read More Comments

Can anyone provide a recommendation on key questions to include in an RFP for Denied Party Screening tools?  Also, can you recommend any service providers?  We currently use E2Open (BluJay), and one of their solutions is coming EOL.

Do you have any tips to boost the SOC/security operations team’s visibility into IAM? Have you managed to effectively close that gap at your organization?

As web operations move toward edge computing frameworks and processes, do you feel prepared to sufficiently observe and protect user privacy at the edge?

We haven't thought much about it.8%

We don't feel it is our responsibility to protect user data at the edge.28%

We feel reasonably well prepared.30%

We have all the tools we need to see and control user data at the edge of our web systems in accordance with our privacy policy and international privacy regulations.31%

We can't see or control any user data between our users and the edge of our systems.1%

I don't know.1%

View Results