Cyberthreat detection and response for the future
John E. Kaye
- Published
- Home, Technology
As detection, investigation and response to cybersecurity threats becomes increasingly challenging, a modern, cloud-native, security operations suite is more vital than ever, argues Chris Corde from Google Cloud
Staying ahead of rising security threats and incidents are among the most vital discussions any organisation can have, yet too many alerts and shifting threat trends make security operations notoriously difficult. The recent mass pivot to remote and hybrid work, coupled with increasingly sophisticated threat actors, make threat detection more challenging, more data-intensive, and more important, than ever before.
The reality is that organisations are constantly under attack, business is changing rapidly, and technology continues to evolve. And past cyberthreat detection and response methods can’t rise to the challenge. SecOps teams need a different approach: a modern take on cyberthreat detection and response.
This is why we recently unveiled Chronicle Security Operations, a modern, cloud-born software suite that can better enable cybersecurity teams to detect, investigate, and respond to threats with the speed, scale, and intelligence of Google. It’s another step in our commitment to democratising security operations and providing better security outcomes for organisations of all sizes and levels of maturity.
Unifying security capabilities
Chronicle Security Operations brings together the capabilities that many security teams depend on to identify threats more quickly, and rapidly respond to them. It unifies Chronicle’s security information and event management (SIEM) technology, with the security orchestration, automation, and response (SOAR) solutions and threat intelligence from Google Cloud. The recently-completed Mandiant acquisition will add even more incident and exposure management and threat intelligence capabilities in the future.
Chronicle Security Operations can provide a more streamlined and integrated experience for security operations teams, including:
● Uniform look and feel across Chronicle’s SIEM and SOAR capabilities to deliver an integrated user experience.
● Single display that pulls together and presents the information about an entity from multiple relevant data sources, including VirusTotal and Google Cloud Threat Intelligence, to help provide context and enable faster decision making.
● Investigative pivots that enable analysts to switch between alerts and entities across Chronicle SIEM detections and Chronicle SOAR modules, which can enable faster investigations.
● Integrated alert management between Chronicle SIEM detections and Chronicle SOAR threat-centred case management, for a more streamlined investigation experience.
● Pre-packaged response playbooks to Google Cloud-based alerts surfaced by Security Command Center, which can speed up resolutions and reduce manual effort.
ABOUT THE AUTHOR
Chris Corde is Director of Product Management, Threat Detection & Response at Google Cloud.
Further information
Sign up to The European Newsletter
RECENT ARTICLES
-
South African students develop tech concept to tackle hunger using AI and blockchain -
Automation breakthrough reduces ambulance delays and saves NHS £800,000 a year
-
ISF warns of a ‘corporate model’ of cybercrime as criminals outpace business defences
-
New AI breakthrough promises to end ‘drift’ that costs the world trillions
-
Watch: driverless electric lorry makes history with world’s first border crossing
-
UK and U.S unveil landmark tech pact with £250bn investment surge
-
International Cyber Expo to return to London with global focus on digital security
-
Cybersecurity talent crunch drives double-digit pay rises as UK firms count cost of breaches
-
Investors with €39bn AUM gather in Bologna to back Italy’s next tech leaders
-
Axians and Nokia expand partnership to strengthen communications infrastructure across EMEA
-
Forterro buys Spain’s Inology to expand southern Europe footprint
-
Singapore student start-up wins $1m Hult Prize for education platform
-
UK businesses increase AI investment despite economic uncertainty, Barclays index finds
-
Speed-driven email security: effective tactics for phishing mitigation
-
Short circuit: humanoids go for gold at first 'Olympics for robots'
-
New IBM–NASA AI aims to forecast solar flares before they knock out satellites or endanger astronauts
-
AI is powering the most convincing scams you've ever seen
-
British firm Skyral to help Mongolia tackle pollution with AI traffic modelling
-
The nuclear medicine breakthrough transforming cancer care
-
Second to none: the watchmaker who redefined time for women
-
How AI agents are supercharging cybercrime
-
The CEO making culture the driving force for innovation
-
Penelope J. Corfield on the secret gestures that shape society
-
In Africa, hepatitis B is a silent killer. And a $1 test could stop it
-
'Our real rivals are TikTok and Netflix’ – iGaming firm Soft2Bet sets out strategy for global expansion
