How to Prepare for SOC AutomationGSTN CISO Anand Pande on the Organization's SOC Journey
The SOC has evolved from a log collector to a threat intelligence tool that helps organizations prepare in advance for attacks, says Anand Pande, CISO of the Goods and Services Tax Network, a non-profit, organization that manages the entire IT system of the goods and services tax portal in India.
See Also: 2021: A Cybersecurity Odyssey
"In SOC, UEBA [user and entity behavior analytics] and SOAR [security orchestration automation and response] aspects are critical. But we need to have process maturity - and currently we are in that phase. From this year, we are focusing on taking it to the next level where behavior analytics can be done," Pande. says.
In a video interview at Information Security Media Group's Cybersecurity Summit in New Delhi, Pande also discusses:
- How is GSTN planning its SOC journey;
- Challenges of automating SOC;
- How to approach security for a critical infrastructure.
Pande is CISO at GSTN. He has more than 18 years of experience in infosec, IT governance, risk management and compliance. He has worked across different industrial sectors. His specific areas of expertise include designing, implementation and management of information security and IT infrastructure.