Forbes January 2, 2025
Daryl Lim

Daryl Lim is the Co-Founder and CTO of Tracecat.

In 2017, analysts at Gartner decided to define the term SOAR to cover an emerging class of security product. SOAR—which stands for security orchestration, automation and response—enables security operations centers (SOCs) to define their incident response procedures as digitalized playbooks. A playbook integrates and executes actions across security tools, actions that human incident responders had to manually repeat over and over without a SOAR.

SOAR was supposed to automate all manual processes in a SOC. Gartner, however, labeled SOAR as obsolete before plateau. They cited high total cost of ownership and competing automation features in existing security platforms (e.g., SIEM or XDR) as the two key reasons for this designation.

The...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: AI (Artificial Intelligence), Cybersecurity, Technology
Related Articles:
ViVE 2025: AI advances, cybersecurity, and what doctors and nurses need
Chinese medical devices are in health systems across U.S., and the government and hospitals are worried
HISAC Finds Ransomware & Third-Party Breaches Dominate 2025 Threats
Feds warn of Ghost ransomware targeting healthcare
1 year later: The Change Healthcare cyberattack and its lasting impact on healthcare

Share This Article