Blog

A CISO’s Perspective on Improving SecOps Effectiveness

by / Comments Off on A CISO’s Perspective on Improving SecOps Effectiveness / Posted in: IT Security

Digital transformation plays a fundamental role in meeting Repsol’s goal of being a net-zero emissions company by 2050. But this increased reliance on technology also brings additional risk due to a significant increase in the attack surface, both in the cloud and in physical facilities.

Combined with the continuously-evolving threat landscape, global geopolitical tensions, and the scarcity of cybersecurity talent, this requires a strategic focus on maximizing the effectiveness of security operations. The goal is to scale the organization’s detection and response capabilities in order to provide operational cyber-resilience and minimize the risk of an attack that can have a material impact on the business.

In this webinar, Javier García Quintela, Global CISO of Repsol, a Global 2000 multi-energy company with 24,000 employees, will discuss how his organization is:

  • Using automation, analytics, and threat intelligence to reduce the risk of ransomware, data breaches, and insider threats.
  • Implementing both on-premises and cloud-native SIEMs, combined with multiple data lakes to collect and analyze telemetry from diverse sources including endpoint, network, email, identity, cloud, and OT security monitoring solutions.
  • Leveraging CardinalOps’ detection posture management platform to continuously assess its MITRE ATT&CK coverage and eliminate gaps caused by missing or misconfigured detections for the latest threats and APT groups most relevant to the organization.

Michael Mumcuoglu, CEO & Co-Founder of CardinalOps, will discuss:

  • Why he founded CardinalOps to address the triple challenge of security tool complexity, rapid and constant change in adversary techniques, and hiring and retaining skilled SecOps personnel.
  • How Gartner recently recognized CardinalOps as a Sample Vendor for Automated Security Controls Assessment (ASCA) in the 2023 Gartner® Hype Cycle™ Report for Security Operations1.
  • Insights from the company’s Third Annual Report on the State of SIEM Detection Risk. Based on a data-driven analysis of more than 4,000 rules across diverse SIEM platforms in production environments — including Splunk, Microsoft Sentinel, IBM QRadar, and Sumo Logic — the report provides some interesting benchmark data about typical data ingestion metrics, MITRE ATT&CK coverage, and rule health in enterprise SOCs.

Presented live by featured speakers Javier García Quintela and Michael Mumcuoglu. Moderated by Terry Sweeney.

Request Free!