Newsroom

SecOps teams turn to next-generation automation tools to address gaps in security; MITRE ATT&CK framework becomes ubiquitous October 30, 2020 – Micro Focus (LSE: MCRO; NYSE: MFGP), in partnership with CyberEdge Group, has published the 2020 State of Security Operations report, which reveals that security operations centres (SOCs) across the globe are most concerned with advanced threat detection and are increasingly looking to artificial intelligence (AI) and machine learning (ML) technologies to proactively safeguard the enterprise. The report’s findings show that more than 93 per cent of respondents employ AI and ML technologies with the leading goal of improving advanced threat detection capabilities, and that more than 89 per cent of respondents expect to use or acquire a security orchestration and automated response (SOAR) tool within the next 12 months. These findings indicate that as SOCs continue to mature, they will deploy next-gen tools and capabilities at an unprecedented rate to address gaps in security. Stephan Jou, CTO Interset, Micro Focus, said, “The odds are stacked against today’s SOCs: more data, more sophisticated attacks, and larger surface areas to monitor. However, when properly implemented, AI technologies such as unsupervised machine learning, are helping to fuel next-generation security operations, as evidenced by this year’s report. We’re observing more and more enterprises discovering that AI and ML can be remarkably effective and augment advanced threat detection and response capabilities, thereby accelerating the ability of SecOps teams to better protect the enterprise.” George Atrash, head of enterprise security – Australia and New Zealand, Micro Focus, said, “While Australia and New Zealand (ANZ) wasn’t specifically called out in this study, many of the survey results closely resonate with the experience and concerns of ANZ SOC teams in their daily operations.” “One of the main challenges for organisations in ANZ has been COVID-19. With the pandemic and the related work from home policies, SOC teams in ANZ experienced a significant increase in security incidents related to unmanaged devices and the deriving threats. To cope with the highest volume of threats, Micro Focus has seen an increasing interest on the MITRE ATT&CK framework, which gives security professionals a better understanding of attack techniques and provides a consolidated knowledge base for advanced threat detection and protection. “Furthermore, the proliferation of security tools undoubtedly provides more data, however, operators need to reduce the threat detection time. Hence the interest in ML and AI-based security operation solutions, which help SOC teams improve their detection capabilities.” As the volume of threats rise, the report finds that 90 per cent of organisations are relying on the MITRE ATT&CK framework as a must-use tool for understanding attack techniques, and that the most common reason for relying on the knowledge base of adversary tactics is for detecting advanced threats. Further, the scale of technology needed to secure today’s digital assets means SOC teams are relying more heavily on tools to effectively do their jobs. With so many responsibilities, the report found that SecOps teams are using numerous tools to help secure critical information, with organisations widely using 11 common types of security operations tools and with each tool expected to exceed 80 per cent adoption in 2021. Key observations include: COVID-19: During the pandemic, security operations teams have faced many challenges. The biggest has been the increased volume of cyberthreats and security incidents (45 per cent globally), followed by higher risks due to workforce usage of unmanaged devices (40 per cent globally). Most severe SOC challenges: Approximately 1 in 3 respondents cite the two most severe challenges for the SOC team as prioritising security incidents and monitoring security across a growing attack surface. Cloud journeys: More than 96 per cent of organisations use the cloud for IT security operations, and on average nearly two-thirds of their IT security operations software and services are already deployed in the cloud. George Atrash said, “As many ANZ organisations start to use the cloud for the majority of their IT security operations software and resources, it will become easier for SOC teams to access security operations functions from literally anywhere in the future. “In ANZ, Micro Focus is seeing growing interest in solutions such as SOAR, threat hunting tools and user and entity behaviour analytics (UEBA) in particular.” The 2020 State of Security Operations report takes a close look at the front lines of IT security: security operations, and provides a deep analysis of the most pressing industry challenges and the technologies being embraced to solve those challenges. This survey specifically references the opinions of IT security professionals who find and mitigate vulnerabilities, detect threats, perform security investigations, respond to incidents, and do countless other operational tasks on a daily basis. -ENDS- More information  The 2020 State of Security Operations report is available today. Methodology Micro Focus, in partnership with CyberEdge Group, developed a 15-question web-based survey. The survey was promoted via email to 410 security operations professionals in the United States, United Kingdom, Germany, India, and Japan in August 2020. Join Micro Focus on LinkedIn and follow @MicroFocus on Twitter.  About Micro Focus Micro Focus delivers enterprise software to empower our 40,000 customers worldwide to digitally transform. With a broad portfolio, underpinned by a robust analytics ecosystem, the company enables customers to address the four core pillars of digital transformation: Enterprise DevOps, Hybrid IT Management, Predictive Analytics and Security, Risk & Governance. By design, these tools bridge the gap between existing and emerging technologies so customers can run and transform at the same time.

CyberResilient.com equips cyber leaders with strategic knowledge and an intelligent assessment tool to help evaluate operational risk and drive growth in times of uncertainty

 Micro Focus (LSE: MCRO; NYSE: MFGP) has announced the launch of CyberResilient.com, a new digital resource designed to support CISOs and board members as they navigate the shifting demands of the digital economy, and attempt to continue to drive business growth during times of uncertainty. In the face of unprecedented global challenges and the rise of cybercrime, organisations are seizing the opportunity to transform into a resilient enterprise designed to have the agility, structure, and growth-centric focus to not only weather adverse conditions but also drive sustained business performance. Knowing how to successfully adapt to an evolving business and threat landscape can be a challenge and as such, CyberResilient.com provides leaders with a trusted resource to help them build their roadmap to cyber resilience and, ultimately, business resilience.  

Like any journey, understanding where you are and where you want to be lets you understand the steps to take to deliver on your end goal and the gaps to fill as you move forward. CyberResilient.com provides the 360˚ Cyber Resilience Assessment Tool” as a means by which CISOs and cybersecurity leaders can holistically assess their current status and identify strategy gaps so that they can take the necessary actions to protect their business, detect the changing risk surface, and evolve their competencies in line with changing threats. Each of the core pillars of cyber resilience (protect, detect and evolve) is covered as part of the assessment and are considered critical elements in enabling teams to continually and intelligently deliver an intended outcome in the face of a potential threat a reality. 

John Delk, senior vice president and general manager, security, Micro Focus, said, “Internal and external adversity will always be forces that impact business continuity and performance and those organisations that have the frameworks in place to assess, pivot and adapt will be in a better position to successfully navigate those challenges. The launch of this trusted new resource and “360˚ Assessment Tool” provides security leaders and senior stakeholders with knowledge and means to not only better understand financial, operational, and information risk, but how to evaluate and elevate their posture in a manner that ultimately drives business growth, profitability and sustained organisational modernisation.” 

Underpinning the core pillars of cyber resilience is the ability of the organisation to strategise, communicate, plan, implement and integrate technologies designed to let an organisation “pivot at scale”, secure the business value chain and enable resilient operational excellence and digital transformation. To do this, it is critical that organisations use a business outcome centric approach leveraging artificial intelligence (AI), machine learning (ML) and automation to streamline and reduce the cost of becoming more resilient. The proper implementation of AI and ML technologies at each stage of protect, detect and evolve is a foundational element and is essential for a resilient organisation to follow guidelines to maximise effectiveness in their deployment.  

Visitors to CyberResilient.com can expect to discover resources and strategic knowledge to better equip their businesses for the new security landscape.   

More Information 

www.CyberResilient.com is live today. 

Join Micro Focus on LinkedIn and follow @MicroFocus Twitter, and for security-related information, join Micro Focus Security LinkedIn and follow Security Twitter. 

About Micro Focus 

Micro Focus delivers enterprise software to empower our 40,000 customers worldwide to digitally transform. With a broad portfolio, underpinned by a robust analytics ecosystem, the company enables customers to address the four core pillars of digital transformation: Enterprise DevOps, Hybrid IT Management, Predictive Analytics and Security, Risk & Governance.  By design, these tools bridge the gap between existing and emerging technologies so customers can run and transform at the same time.  

Home