Posts

AI SOC Agent: Transform Security Operations

An AI SOC Agent represents a fundamental shift in how security operations centers detect, investigate, and respond to threats. This article explores what AI SOC agents are, how they reshape traditional SOC workflows, the key capabilities they deliver, and best practices for deploying AI agent orchestration in SOC environments to maximize analyst effectiveness and reduce response times. Read Full Article
Post a Comment
Read more

Alert Noise Reduction: A SOC Optimization Guide

Alert noise reduction is the practice of filtering, consolidating, and prioritizing security and operational alerts so that teams focus only on what matters. This guide covers the challenges of alert noise, its impact on IT teams, and proven strategies to consolidate alerts, classify severity, and automate to reduce incidents effectively. Read Full Article
Post a Comment
Read more

When Your SOC Analyst is Also a Bot: AI Agents, MCP, and Many Automation Opportunities in Your Security Operations

For years, we talked about AI in the SOC the way we talked about self-driving cars: always five years away, always needing “just a bit more data.” Then MCP (Model Context Protocol) happened. Then agentic frameworks stopped being demos and started being tools. And suddenly the question wasn’t “can AI help security teams?” but “what should we let it do first?“ Read Full Article
Post a Comment
Read more

The Human-augmented autonomous SOC: A Perfect Blend of Technology and Humanity

Just after the turn of the century, IBM introduced the term, ‘autonomic IT.” At the time, IBM’s perspective was that IT applications, networks, and systems had become too complex for humans to manage, monitor, or secure. IBM presented its autonomic IT concept, with a vision of IT systems that could manage themselves with advanced capabilities for self-configuration, self-optimization, self-healing, and self-protection – a future of autonomy, efficiency, and IT harmony on the horizon. Read Full Article
Post a Comment
Read more

NDR is a Requirement for Modern Security Defenses and the Agentic SOC

Network Detection and Response (NDR) has been the Rodney Dangerfield of security tools over the past few years – “it don’t get no respect.” Conceivably, this state of disrepute came from all the marketing money thrown at Endpoint Detection and Response (EDR) and eXtended Detection and Response (XDR) . It could also be related to growth of encrypted traffic and the associated misguided belief that encrypted traffic all but blinded NDR technology. Read Full Article
Post a Comment
Read more

Sumitomo Chemical On AI, Working With Stellar Cyber, & More. Erwin Eimers, America CISO.

At RSAC 2026 , cybersecurity leaders gathered to explore how AI is reshaping security operations and in this episode, Erwin Eimers, America CISO at Sumitomo Chemical, shares his real-world perspective. Joining host Amanda Glassner, Erwin dives into his experience working with Stellar Cyber, the evolving role of AI in modern SOC teams, and key takeaways from one of the industry’s biggest cybersecurity events. Listen Podcast
Post a Comment
Read more

Anthropic’s Mythos Preview just changed the threat landscape in ways the security industry isn’t fully prepared for

Today’s attackers largely treat software as a black box. Some study open-source software (OSS) to tailor their techniques, but doing this at scale has always been practically impossible which created a natural ceiling on adversarial precision. Mythos removes that ceiling entirely. Read Full Article
Post a Comment
Read more