EP77 Operational Realities of SOAR: Automate and/or Enrich, Playbooks, Magic
Cloud Security Podcast by Google
00:00
Sor and XDR Platforms
i think that there's tremendous potential to improve security operations by enhancing and expanding capabilities, visibility and feature sets of existing platforms in e d r. I recommend using simplified community version to see what it looks like yourself before implementing something like this. Sim is important for meeting requirements to collect logs from various sources; sor basically helps you build your processes and work flows into made as much of that as possible around it that makes sense. So any one tip on how to succeed with sore quickly? Dive into it. Have fun.
Transcript
Play full episode
