Down With SIEM, Long Live SOAR! - Nathan Hunstad - ESW #229

published 1 month ago by Security Weekly

SIEM tools have been the bedrock of Security Operation Centers, or SOCs, for much of the history of modern security. That does not mean that they are loved: most SIEM tools are overwrought, complex, and hard to manage. In the past few years a new category of tool has emerged: SOAR. While many teams that invest in SOAR platforms are first leveraging them for automation, Code42 Principal Security Engineer & Researcher Nathan Hunstad believes that SOAR tools are also poised to finally displace SIEM at the top of the blue team tool pyramid, and rightly so. Segment Resources: This segment is sponsored by Code42. Visit to learn more about them!   Visit for all the latest episodes! Show Notes:

more episodes from Paul's Security Weekly TV