Amid the ever-evolving landscape of cyber threats, organisations are constantly challenged to ensure security. Conventional security methods are failing to keep up with the escalating volume and sophistication of attacks. By implementing Managed Detection and Response (MDR) with automation, Security Operations Centers (SOCs) can optimise workflows, augment analyst capabilities, and significantly enhance the organisation's overall cybersecurity defences.

Palo Alto Networks offers comprehensive MDR services, leveraging its threat intelligence and cutting-edge technology expertise. Unit 42, its esteemed threat intelligence team, is crucial in providing valuable insights into emerging threats and trends, empowering organisations to stay ahead of malicious actors.

In this episode of the EM360 Podcast, Richard Stiennon, Chief Research Analyst at IT-Harvest, speaks to Ophir Karako, Software Engineer (Unit 42) at Palo Alto Networks, to discuss:

• Palo Alto’s MDR Services
• Operational Automation
• Data Enrichment
• Threat Response
• Job security for SOC Analysts

• Enloe Medical Center Strengthens Its Security Posture and Improves Efficiency With Unit 42 MDR
• Unit 42 Managed Detection and Response Service Datasheet
• A Practical Guide to Deploying SecOps Automation

Chapters

00:00 - Introduction and Background

00:57 - MDR Services at Palo Alto Networks

03:20 - Automation in Operations

04:16 - Automating Data Enrichment

05:13 - Intellectual Property Playbooks and Scripts

05:41 - Customized Reports for Customers

06:10 - Automated Threat Response

07:08 - Insights and Lessons Learned from Automation

07:37 - Benefits of Automation for SOC Analysts

08:06 - Collaboration with Product Experts

09:04 - Treating Automation as a CI/CD Process

10:01 - The Future of Automation in Cybersecurity

12:51 - Automation and Job Security for SOC Analysts

14:20 - Cortex XSOAR: Security Orchestration, Automation, and Response Platform

15:46 - Unit 42 MDR Service

16:16 - Conclusion