Security Operations Centers and the Evolution of Security AnalyticsBuilding the Cognitive Security Operations Center
IBM’s Security Intelligence and Security Operations Center (SOC) consulting practice helps hundreds of clients to setup, optimize and evolve their SOC capabilities for both information technology and operational technology. This session will cover IBM’s point of view on Security Operations Centers; basic operating models; and the people, process, organization and technical best practices and innovations that are driving the evolution of the SOC. The session will highlight guiding principles, risk indicators (e.g., Asset Exposure Ratio or AER) and metrics that will help you measure and judge threat detection capabilities, SOC efficiency, SOC effectiveness, managed security services and the use of emerging best practices.
- Core Curriculum Security and Resiliency Building the Cognitive Security Operations Center
- Security and Resiliency Campus Theater A
- Thu (March 22), 8:30AM PT
Paul DwyerPartner, IBM Security, IBM
Mr. Dwyer leads IBM’s Global Security Intelligence and Security Operations competency (SIOC) with more than 500 clients across a wide range of industries including; Financial Services, Utilities, Transportation, Consumer/Industrial products, government and defense industries. Mr. Dwyer has worked with companies around the world to develop business driven Enterprise Security Strategies, implemented programs to establish and/or transform Security Operations Centers around the world.
Mr. Dwyer is an IBM inventor with multiple patents related to Security Operations Center (SOC) capacity modeling, SOC strategy design/implementation methods and operational control frameworks, SOC predictive analytical techniques, SOC Cognitive Analytical techniques and SOC deployment and optimization accelerators.