ESG RESEARCH REPORT
SOC Modernization and the Role of XDR
Security operations demand massive scale to collect, process, analyze, and act upon massive amounts of data. To modernize security operations centers and keep up with the volume of security alerts, organizations need advanced analytics to help automate tier-1 analyst tasks like triaging alerts, correlating alerts with IoCs, and preparing incidents for investigations. New research from ESG, sponsored by Gurucul, provides insights into the current perception and role of XDR as a component of security operations modernization efforts.
The report uncovered 5 key trends:
MORE DATA AND BETTER DETECTION RULES ARE STILL DESIRED
Despite massive amount of security data in use, more is desired, as is better detection rules
SECOPS PROCESS AUTOMATION INVESTMENTS ARE PROVING VALUABLE
While implementation strategies vary, automation investments are paying off for most
MITRE ATT&CK FRAMEWORK IS PROVING VALUABLE FOR MOST
However, many are still figuring out how and where to apply it to gain value
XDR MOMENTUM CONTINUES TO BUILD
While much confusion exists about what XDR is, investment in support of advanced threat detection is significant
THE USE OF MDR IS MAINSTREAM AND EXPANDING
While use cases vary, MDR services are widely adopted across organizations of all sizes and maturity
Please fill out the form below. The eBook will be sent to the email address you provide.
Download the eBook to learn more.
ESG Research Survey, SOC Modernization and the Role of XDR, June 2022.