Top Security Operations Center Challenge for 2023 Is:

As if security wasn’t hard enough, it is getting harder every day. According to Google, the top challenge for Security Operations Centers in 2023 is not going to be anything that they are good at now. That is the bad news.

The even worse news is that the security operations software companies and cloud computing services are not really prepared for this.

At the same time companies are moving to the cloud at breakneck speeds.

The good news in all of this is that the SOC software companies understand the major clouds like Amazon and Azure.

What is not currently being handled is Software as as Service – SaaS. And cross-cloud or multi-cloud.

Here is what the experts at Google Cloud have to say:

“To me, this is both a prediction and a wish and a trend, and I feel like we’re behind enough already compared to other teams,” said Anton Chuvakin, security advisor at Office of the CISO, Google Cloud. “So that I think SOCs need to catch up, and next year is the year to catch up.”

The cloud changes everything they say. One of the big capabilities of the cloud is serverless.

With serverless, an instance might exist for 30 seconds, 60 seconds, maybe a little bit more. Then it goes poof. How do you monitor poof? Or do forensics on it?

Identity and access management in the cloud is different too.

Then there is the shared responsibility model. You can’t even count on exactly who is doing what. In theory you can, but that is only a theory.

Do you have the resources to make this transformation yourself?

Can you afford not to make this transformation?

Here is more bad news.

The hackers are not going to wait for you to catch up.

Final note. I have been screaming this for years. I now have confirmation from some pretty smart folks that what was my theory is, actually, reality. Sometimes I wish that I was wrong.

Credit: Google/SC Media