Episode 152: Driving Response Time While Enriching Telemetry
In episode 152 of Cybersecurity Where You Are, Sean Atkinson is joined by Cliff Moten, Manager, Cybersecurity Solutions Engineering at the Center for Internet Security® (CIS®); and Richard Vargas, Security Operations Center Manager at CIS. Together, they discuss how the 24x7x365 CIS Security Operations Center (SOC) and CIS Managed Detection and Response™ (CIS MDR™) work together to accelerate response time while enriching telemetry.
Here are some highlights from our episode:
- 01:40. Demystifying SOCs and MDR as cybersecurity concepts
- 02:52. How the CIS SOC works to provide information, context, and next steps for an event
- 05:04. Artificial intelligence and automation as ways to accelerate response time
- 10:20. Real-world instances where a fast response time made a difference
- 13:10. What it means to support underfunded organizations with the resources they need
- 17:22. The role of contextual cyber threat intelligence in accelerating response times
- 19:01. The value of security orchestration, automation, and response (SOAR) in helping defenders move quickly
- 27:33. Lessons that organizations can use to cut down on their incident response times
Resources
- The CIS Security Operations Center (SOC): The Key to Growing Your SLTT's Cyber Maturity
- Episode 148: How MDR Helps Shine a Light on Zero-Day Attacks
- Episode 144: Carrying on the MS-ISAC's Character and Culture
- Episode 137: National Cybersecurity Through SLTT Resilience
- Combatting Ransomware
- Establishing Essential Cyber Hygiene
- CIS Community Defense Model 2.0
If you have some feedback or an idea for an upcoming episode of Cybersecurity Where You Are, let us know by emailing [email protected].
As of June 23, 2025, the MS-ISAC has introduced a fee-based membership. Any potential reference to no-cost MS-ISAC services no longer applies.