Organizations looking to migrate to a next-generation security operations center must first carefully assess any problems they are facing with current security technology, says Vikram Mehta, associate director of information security at MakeMyTrip, an India-based online ticketing portal.
"The first thing that organizations would need to do before they embark on this journey is to identify which problems they are really trying to solve, identify pain points and document use cases which are challenging to solve with the traditional framework of SOC implementation," Mehta says in an interview with Information Security Media Group (see: Challenges for SOCs: People, Process, Technology).
Organizations should make a gradual shift to a next-generation SOC, he advises. "Just implementing a piece of technology and expecting it to solve all problems is absolutely not the way to go," he says.
In this interview (see audio link below image) Mehta also discusses:
Common mistakes companies make while shifting to a next-generation SOC; Problems that a next-generation SOC can help resolve; The technology stack, including open source components, that MakeMyTrip leveraged to implement a next-generation SOC.Mehta, associate director of information security at MakeMyTrip, has more than 13 years of experience in information security. Previously, he was manager or application security, at IBM.