Contrary to reactive threat hunting, proactive threat hunting takes a strategic, risk-based approach to more precisely define the threat landscape. A risk-based approach looks at threats that are most relevant to a particular organization.
When it comes to threat hunting, there are significant business benefits for those organizations that have a tightly integrated Threat Intelligence Platform (TIP) and Security Orchestration, Automation and Response (SOAR) platform.
In this episode of the ThreatConnect Podcast, we talk about all of this and more with ThreatConnect Security Architect Chris Ralph.
Chris Ralph, Security Architect at ThreatConnect, has spent the last 20 years solving problems and creating solutions that meet customer and business requirements bringing to market both technology and services for vendors of all sizes across a variety of vertical markets. Chris is an avid film watcher of all genres, but his Harry Potter quote was the best he could come up with.
“When we think about the problems that are being faced by our Security Operations Centers (SOCs) and incident responders today, it is the sheer volume of information, alerts and activities that are ongoing on a daily basis,” Ralph said. “But bringing in a security orchestration automation and response system enables us to carry out a large amount of the activities that would normally have been done manually by the analyst, by the SOC, or the incident response teams, and to be able to fully automate those.