Respondents Surveyed Report Widespread SOC Dissatisfaction, Despite Significant Investment
Respond Software, innovators in Robotic Decision Automation (RDA) for security operations, and Ponemon Institute today released the findings of a new survey on the cost and effectiveness of today’s Security Operations Center (SOC).
The SOC is critical to working and performing in today’s digitized economy as a greater share of business operations and sensitive data is brought online, with 73% of respondents viewing their SOCs as crucial elements of their cybersecurity strategies. The cost that organizations spend on their SOCs reflect this importance, as the research revealed that organizations spend on average $2.86 million annually on their in-house SOCs. Significantly, the cost balloons to $4.44 million annually if organizations outsource to a managed security service provider (MSSP), neutralizing any cost savings from outsourcing.
Despite this substantial investment, almost half (49%) are dissatisfied with the effectiveness of their SOC in detecting attacks. Of those who turned to a managed security service provider (MSSP), 58% rated their MSSP as ineffective. Part of this dissatisfaction stems from the high cost of MSSPs, often twice the cost of staffing and managing a SOC in-house. Many of these respondents (63%) are looking for a way out, including reviewing new vendors or bringing the SOC function in-house.
Unfortunately, the research also uncovered challenges with running an in-house SOC as well. Those organizations that run their SOCs internally struggle with significant staff burnout and turnover. 70% of respondents agreed that their SOC analysts burn out quickly because of the high-pressure environment and workload, with information overload and chasing too many alerts as the main stressors.
The data indicates that a new way of looking at SOC management is overdue. The Respond Analyst delivers insights that replicate and automate the decision-making of a highly experienced human SOC analyst. Cost-effective, scalable and SIEM-agnostic, the Respond Analyst sidesteps the challenges identified by the report and enables organizations to spot, isolate and mitigate threats at machine scale without sacrificing cost or performance.
Recommended News: A New Decade Dawns – The Shaping of the Advertising Ecosystem
Mike Armistead, CEO and co-founder of Respond Software, said: “Security Operations Centers are critical to a successful security program, and organizations invest heavily in the people, processes and technology to support them. But as this survey demonstrates, what they’re doing now isn’t as effective as it should be, and that means they have to change the way they’re thinking about the problems they’re trying to solve. We design our products to automate human monitoring and decision making to increase visibility and analyst team capacity so that cybersecurity becomes more scalable.”
Larry Ponemon, chairman and founder, Ponemon Institute, said: “This study highlighted many of the challenges and perceptions regarding company SOCs, including the substantial impact and cost of personnel for in-house SOCs. Many organizations thus turn to outsourcing, but 58% find their MSSPs to be either ineffective or only moderately effective. This creates a conundrum that suggests a third-way solution is necessary.”