White Paper

State of Security Operations 2017

Report of capabilities and maturity of cyber defense organizations

Organizations around the globe are investing heavily in cyber defense capabilities to protect their critical assets. Whether protecting brand, intellectual capital, and customer information or providing controls for critical infrastructure, the means for incident detection and response to protect organizational interests have common elements: people, processes, and technology.

The maturity of these elements varies greatly across organizations and industries. In this fourth annual State of Security Operations 2017 report, Hewlett Packard Enterprise provides updates to the current and emerging capabilities, best practices, and performance levels of security operations as learned from the assessment of organizations around the globe.

HPE Security Intelligence and Operations Consulting (SIOC) has assessed the capability and maturity of 137 discreet SOCs via 183 in-depth assessments since 2008. 

The assessments have shown some interesting trends:

  • Consistency of mission, technology, management, and staff has a strong effect on the maturity of cyber defense organizations. 
  • Organizations are continuing to try a variety of models to create right-size operations, including partnering with service providers or off-shoring specific roles or functions (such as level 1 monitoring). 
  • Hunt teams that perform analysis on historical logs (as opposed to real-time analysis) are being adopted rapidly. 
  • Increasing levels of workflow and process automation allow organizations to improve consistency, bandwidth, and speed of operations.

The uneven distribution of maturity results across industries can be directly correlated with the experience of negative financial impact from malicious attacks. Organizations who have experienced direct financial loss due to malicious attacks do a better job of immediately maturing to a higher level. This group of organizations continues to grow significantly in number.

Download HPE's State of Security Operations 2017 report today for an in-depth run-down on the findings.

Get this white paper delivered to your inbox

Success

You have unlocked a free copy of State of Security Operations 2017

You may download the white paper from this page at any time.

GET IT NOW

Report of capabilities and maturity of cyber defense organizations

Organizations around the globe are investing heavily in cyber defense capabilities to protect their critical assets. Whether protecting brand, intellectual capital, and customer information or providing controls for critical infrastructure, the means for incident detection and response to protect organizational interests have common elements: people, processes, and technology.

The maturity of these elements varies greatly across organizations and industries. In this fourth annual State of Security Operations 2017 report, Hewlett Packard Enterprise provides updates to the current and emerging capabilities, best practices, and performance levels of security operations as learned from the assessment of organizations around the globe.

HPE Security Intelligence and Operations Consulting (SIOC) has assessed the capability and maturity of 137 discreet SOCs via 183 in-depth assessments since 2008. 

The assessments have shown some interesting trends:

  • Consistency of mission, technology, management, and staff has a strong effect on the maturity of cyber defense organizations. 
  • Organizations are continuing to try a variety of models to create right-size operations, including partnering with service providers or off-shoring specific roles or functions (such as level 1 monitoring). 
  • Hunt teams that perform analysis on historical logs (as opposed to real-time analysis) are being adopted rapidly. 
  • Increasing levels of workflow and process automation allow organizations to improve consistency, bandwidth, and speed of operations.

The uneven distribution of maturity results across industries can be directly correlated with the experience of negative financial impact from malicious attacks. Organizations who have experienced direct financial loss due to malicious attacks do a better job of immediately maturing to a higher level. This group of organizations continues to grow significantly in number.

Download HPE's State of Security Operations 2017 report today for an in-depth run-down on the findings.