What does the security operations center of the future look like? It incorporates artificial intelligence and it helps reduce the alert fatigue that make human technicians less effective.
SentinelOne offered its own answer to the question of the SOC of the future this week at its OneCon 2024 event, releasing tools to fulfill a vision of for an autonomous SOC that the company promised earlier this year. It includes plenty of artificial intelligence components plus ingestion and synthesis of data from across the cybersecurity ecosystem.
We’ve also got news today of a new Human Risk Behavior Report from Arctic Wolf that with some disturbing findings from a survey IT leaders. For instance, 64% have clicked on phishing links themselves. We’ve also got a platform update, some partnerships and more.
Got news or tips to share with MSSP Alert? Send them to me at [email protected].
Today’s MSSP Update
1. Autonomous SOC - SentinelOne delivered on its vision for the autonomous SOC yesterday with the introduction of several new solutions the company introduced at its customer and cybersecurity conference, OneCon 2024. They include no-code automation of security workflows (Singularity Hyperautomation); ingestion and synthesis of all data from across the security ecosystem (Singularity AI SIEM); automating of alert triage, hunting and investigations (Purple AI); and large language models and multimodal models for cybersecurity AI use cases (SentinelOne’s Ultraviolet Family of Security Models).
2. Mistakes IT makes - Arctic Wolf’s 2024 Human Risk Behavior Reportfound that 80% of IT leaders are confident their organization won’t fall for a phishing attack, but 64% have clicked on phishing links themselves. Despite this, 27% of IT leaders have terminated an employee for falling victim to a scam. In addition, 68% of IT and cybersecurity leaders admit to reusing system passwords and more than a third (36%) of IT leaders have disabled security measures on their systems.
3. Platform update - Evo has released version 2.0 an update to its identity and access management platform designed specifically for MSPs. The update creates a consolidated identity platform with several new products. The company has also added former Datto executive Greg Gage as its new CTO.
4. Cloud data protection partnership - Blue Mantis, a managed services, cybersecurity and cloud solutions provider is partnering with HYCU, Inc., for modern data protection for on-prem, cloud services, and SaaS. This collaboration will help Blue Mantis clients using AWS, Azure and Google Cloud, as well as a broad array of leading SaaS platforms, to instantly identify and backup their cloud and SaaS applications, determine vulnerabilities and remediate compliance gaps.
5. Identity access lapses - Identity security provider Permiso’s 2024 State of Identity Security Report, based on a survey of 500 IT security and risk practitioners, found that 45% of respondents reported unauthorized access to their environments in the last year.
6. Red Sift now available on Pax8 - Red Sift’s cybersecurity solutions will now be accessible to MSPs globally via the Pax8 cloud marketplace. Red Sift said its solutions, including OnDMARC, Certificates and Brand Trust, can help MSPs grow new revenue streams.