Forbes January 2, 2025
Daryl Lim

Daryl Lim is the Co-Founder and CTO of Tracecat.

In 2017, analysts at Gartner decided to define the term SOAR to cover an emerging class of security product. SOAR—which stands for security orchestration, automation and response—enables security operations centers (SOCs) to define their incident response procedures as digitalized playbooks. A playbook integrates and executes actions across security tools, actions that human incident responders had to manually repeat over and over without a SOAR.

SOAR was supposed to automate all manual processes in a SOC. Gartner, however, labeled SOAR as obsolete before plateau. They cited high total cost of ownership and competing automation features in existing security platforms (e.g., SIEM or XDR) as the two key reasons for this designation.

The...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: AI (Artificial Intelligence), Cybersecurity, Technology
Related Articles:
Cyber leaders are bullish on generative AI despite risks: report
Network Detection and Response for Healthcare (NDR-H): Future of Medical Device Cyber Security
Three Key Cybersecurity Predictions For 2025 (And What You Need To Do)
AI Fuels Reported Rise in ‘Polished’ Phishing Scams
55% of Companies Have Implemented AI-Powered Cybersecurity

Share This Article