From the course: Introduction to Security Information and Event Management (SIEM)
Join today to access over 24,900 courses taught by industry experts.
SOAR
- [Instructor] We mentioned earlier in this course that it's important to learn about similar or related security technologies that complement and improve the capabilities of SIEM. We touched on IDPS. Now let's have a look at another important tool, security orchestration, automation, and response, also known as SOAR. To start understanding how important SOAR can be to your organization, let me give you an example. Say you're a SOC manager. You wake up, and you see a series of security alerts that are generated from your same application, and you're thinking, "Where do I start from? How do I prioritize which alert to tackle first?" You're frustrated, because you thought that SIEM was enough. A SIEM is not flawless. SOAR is an extra layer of protection you can add to your SIEM to enhance the capabilities of the SIEM. SOAR is like adding a gate around your building that already has security guards, and even security…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.