What is the future of SIEM solutions and SOC? What are the various products available in the market? How does XDR enhance the efficiency of SIEM. 

EventsSecurity Operations Center (SOC)
504 viewscircle icon2 Comments
Sort by:
EVP - Chief Security Officer in Banking6 months ago

I do not see XDR improving SEIM efficiency. XDR provides more source collection adding enrichment to signals/detections. I find the use of AI has improved efficiency more so than anything that is not normal continuous improvement BAU.  

Group Director of Information Security in Banking6 months ago

The future of these solutions more and more use case based with Agentic AI doing lots of routine configuration changes on perimeter security solutions like, WAF, NGF etc.
Future is also dependent upon adoption of your single cloud, multi-cloud or a combo of on-prem, on-cloud workloads strategy with inhouse vs outsource software development IT strategy. 
XDR is just one tool which SIEM monitors and makes real time decisions in view of developing threats. Depending upon which XDR product you use (Microsft's Defender/ Crowdstrike etc), you may want to subscribe to their managed XDR services too rather than building your own SOC team to manage it.

Content you might like

Do you have any tips to boost the SOC/security operations team’s visibility into IAM? Have you managed to effectively close that gap at your organization?

Entra MFA for Internal Colleagues (not remote access):  What time period do you set for reauthentication? What conditional access / refresh token expiry time frame do you have in place? i.e - MFA every log in, every 24hrs, every 15 days etc.

New York City has become the first major city in the U.S. to open a Cyberattack defense center. Will we see a faster critical response time to major attacks with this new initiative?

Yes, response times will be faster.71%

No, response times will stay the same.22%

Unsure7%

View Results

We are working to shape a potential RFP for ISRM. One aspect ISRM Leadership is asking to potentially consider/incorporate our specialized security VAR (Value Added Resellers). Can anyone recommend or share back a list of suppliers? An example supplier is: Guide Point Security.

Read More Comments

Do you think quick patching is key to security, or is testing patches just as important as applying them?

Speed is key!33%

Balance (test then patch)57%

It depends on the severity of the bug9%

View Results