To benefit from automation, we need to review incident response processes to find the areas where security analysts can engage in more critical thought and problem-solving.
Automation is being hailed as a way to take some of the heavy lifting away from overworked security operations teams. Security vendors are integrating automation into their point solutions to automate tasks such as security policy orchestration, change and configuration management, incident response playbooks, and other labor-intensive tasks.
This is a good start toward solving some of the challenges of managing the modern security stack. But we need to think more strategically about automation if we’re truly going to solve cybersecurity workforce challenges and gain any kind of edge over hackers.
