We changed our name from IT Central Station: Here's why
IT Alerting and Incident Management Questions
Evgeny Belenky
PeerSpot (formerly IT Central Station)
Jan 20 2022

Hi SOC analysts and other infosec professionals,

Which standard/custom method do you use to decide about the alert severity in your SOC? 

Is it possible to avoid being too subjective? How do you fight the "alert fatigue"?

Robert CheruiyotHi @Evgeny Belenky, I think as long as you do this thing manually, you will… more »
2 Answers
Evgeny Belenky
PeerSpot (formerly IT Central Station)
Jan 12 2022

Hello security professionals,

What is the main difference between these two terms in incident response:  mitigation and remediation.

Please share some examples, if applicable.

Thanks,

ITSecuri7cfdMitigation is taking your car in for an oil change and tune up. Remediation is… more »
Ruben BoiardiMitigation is changing the flat tire. Remediation is getting the nails off the… more »
Luis ApodacaLet say in an IT enviroment: "Mitigation" moves your virtual machines or… more »
4 Answers
Evgeny Belenky
PeerSpot (formerly IT Central Station)
Nov 29 2021
Hi security professionals, As the majority of you have probably heard, GoDaddy has been hacked again a few days ago. Based on what is already known, what has been done wrong and what can be done better?  Share your thoughts!
Read More »
1 Answer
Evgeny Belenky
PeerSpot (formerly IT Central Station)
Dec 10 2021

Hi peers,

Why SOC is important for an organization? What are the main challenges of the modern SOC?

Thanks.

Hasan Zuberi ( HZ )SOC refers to a dedicated platform and team organization to prevent, detect… more »
Denis LSOC is the heart of your infrastructure security, a centralized system… more »
3 Answers
Rony_Sklar
PeerSpot (formerly IT Central Station)
Sep 22 2021

Hi dear community,

Can you explain what an incident response playbook is and the role it plays in SOAR? How do you build an incident response playbook? 

Do SOAR solutions come with a pre-defined playbook as a starting point?

Maged MagdyHi, what an incident response playbook?  Incident Response Playbook is the… more »
Robert CheruiyotHi Rony,  Playbook automates the gathering of threat intelligence from a… more »
David SwiftIncident Response playbooks detail how to act when a threat or incident occurs… more »
4 Answers