Command Zero

⚠ Fresh research alert! ⚠ We've released "Top Challenges in Cyber Investigations & Recommendations for SecOps Leaders" based on 352 interviews with cyber leaders and practitioners over 24 months. The report has staggering findings: - 92% of organizations lack standardized cyber investigation processes, - 88% of security leaders expressed concerns about operational issues related to the lack of skilled staff and high attrition rates, - 72% admitted to having blind spots for non-security data sources. Read our press release for more: https://lnkd.in/gHPeQyi5

"...Q: As you engage with customers, what is the main driver for their interest in a platform like Command Zero? What problems are they trying to solve? Eric: Each customer has different problems they're trying to resolve, but there are some common themes: - Dealing with the deluge of alerts and incidents: The sheer volume of data is overwhelming for many SOC teams. - Handling nuanced investigations: These go beyond what can be easily automated or applied to a simple playbook. - Lack of knowledge about newer data sources: Teams often struggle with how to investigate unfamiliar systems like AWS deployments or GitHub. - Doing more with less: This is a universal goal across all our customers..." Last week, we sat down with Eric Hulse to get his observations from recent customer engagements. Read on for the full interview: https://lnkd.in/gbcKGAqy

"...Practically speaking, analysts need the right tools to create investigation flows on the fly. It's also realistic to expect that these same flows can be refactored into playbooks eventually, but something must fill the gap in the here and now. Every security system generates its own alerts daily and introduces new alert types frequently, and as more security vendors are introduced, the number of alerts will continue to increase—especially since these vendors are being paid to deliver more alerts..." Read Alfred Huger's latest post on uncertain security alerts, the issues they cause and how SOC teams can handle them effectively. https://lnkd.in/gY5UnrCi

The universal talent gap in cybersecurity isn't news. 📰 Understanding why we have this gap and how we can solve it are. 💡 Read Erdem Menges' latest blog post uncovering the first key finding and Command Zero's recommendations from our latest research report: - 88% of respondents expressed concerns about operational issues related to the lack of access to skilled staff and high attrition rates.  - 74% of respondents stated they felt their team lacked the skills in public clouds to perform high-quality investigations. - 72% of organizations were not confident about their ability to track an intruder through their environments within an incident. https://lnkd.in/efS9nkn7

Check out Joshua Goldfarb's analysis and perspective on our latest research report on SecurityWeek! The three dimensions that stood out to Josh are: 1. Simplifying complexity can help address the talent gap 2. Increasing visibility, particularly in hybrid and multicloud environments, is necessary 3. Empowering analysis and improving analytics can facilitate security investigations

The Top Challenges in Cyber Investigations & Recommendations for SecOps Leaders report sheds light on the primary challenges encountered in cyber investigations along with expert recommendations. Read Dov Yoran's first post of a blog series covering the key findings, takeaways and recommendations from this report. This post covers the goal, scope and methodology of the report. https://lnkd.in/ghfK-Vdg

"...By leveraging AI to intelligently select and prioritize investigative questions, we can initiate investigations and provide outcomes more swiftly and effectively. As we continue to refine this approach, we're excited about its potential to shape the future of AI-driven cybersecurity investigations. The synergy between human expertise and AI-powered guidance is proving to be a formidable tool in cyber investigations..." Read Dean De Beer's latest blog on our RAG implementation for question selection: https://lnkd.in/g8xbDvdz

Check out this entertaining interview with Dov Yoran during Black Hat . You'll learn about: • Dov’s background and building a start-up with his brothers • The problem Command Zero solves - a better quality of life for SOC folks • Command Zero’s initial vision and how it’s evolved • Overcoming the internal ‘this is what we have always done’ • Key challenges from Interviewing over 300 security practitioners • Advice for aspiring Founders Thank you Steffen Foley and Aspiron Search for the interview.

"As cyber threats continue to evolve, security operations teams face mounting challenges in defending organizations against increasingly sophisticated attacks. Command Zero has released new research that paints a troubling picture of the current state of cyber investigations. The report, based on interviews with over 350 cybersecurity professionals, reveals critical gaps in incident response and threat-hunting capabilities across industries..." Read Jeremy Seth Davis's interview with Dov Yoran and Erdem Menges, covering their take on our latest research report: https://lnkd.in/gDzDtz5B

"... Firms looking to respond to increasingly sophisticated cyber attacks face immense hurdles. Among them: a dire shortage of skilled cybersecurity workers, as well as expensive and hard-to-operate investigative tools, according to a report released Tuesday by the cybersecurity firm Command Zero..." Read Farwa Sajjad's take on our latest research on The Security Ledger https://lnkd.in/g437EnM5