SecOps, or security operations, is facing a myriad of challenges in 2024, as highlighted by expert Christopher Crowley in a recent report. Crowley, an independent consultant and senior instructor at the SANS Institute, brings a wealth of experience in managing and securing networks to the table. His “SANS 2024 SOC Survey” report, released in May, delves into the key challenges that are currently plaguing the field of security operations.
One of the recurring themes that emerged from this year’s survey is the age-old issue of misalignment with the business. SecOps teams often struggle to sync up their security objectives with the larger goals of the organization, leading to inefficiencies and missed opportunities for collaboration. Additionally, there are clear gaps in communication between NetOps and SecOps teams, which can further exacerbate security vulnerabilities within an organization. In a world increasingly dominated by software-defined technologies, the stakes for security incidents have never been higher.
Despite these challenges, Crowley remains optimistic about the future of SecOps. Drawing on his extensive experience in the industry, he notes that significant progress has been made over the past two decades, particularly with the widespread adoption of cloud computing. One notable trend highlighted in this year’s survey is the declining opinion of AI and machine learning within the context of security operations. Crowley sees this as a natural part of the evolution of any new technology, as early adopters grapple with the realities of implementation and integration.
Looking ahead, Crowley advocates for a renewed focus on clearing technical debt within IT organizations. He likens this phenomenon to space junk orbiting Earth, a byproduct of decades of technological advancement. By actively addressing and remedying technical debt, businesses can streamline their operations and deploy more efficient and secure information systems.
As SecOps continues to mature, Crowley hopes to see a concerted effort towards building a more cohesive and integrated approach to security operations. By aligning security objectives with broader business goals and proactively addressing technical debt, organizations can fortify their defenses against cyber threats and ensure a more resilient IT infrastructure.
In conclusion, while SecOps in 2024 may be fraught with challenges, experts like Christopher Crowley remain steadfast in their belief in the continued evolution and improvement of the field. By taking a long-term view and addressing key issues such as technical debt and collaboration between teams, organizations can navigate the complex landscape of cybersecurity with confidence and resilience.