AUTOMATION & SOAR - WALK BEFORE YOU TELEPORT

At Highland Defense we believe strongly in the power and potential of Automation.

However, we know it takes some deliberate effort to get automation right and to do it consistently at scale. The biggest mistake we see in Fortune 500 organizations is they over apply automation as a solution to their alerting woes.

We feel that most automation implementations primarily automate the “noise”. Yes this reduces alert volume, but the automations tend to be based on indicators, and therefore not very durable in the long term.

This is why at Highland Defense, we think automation should become a focus AFTER your alerting platform has successfully eliminated a significant amount of noise (which is what RBA does very well).

Then you can focus your automation efforts on automating SIGNAL. These alerts are high fidelity and exceptionally normalized, thus easier to automate, and with greater long term durability.

Or in finance terms - greater ROI with lower overhead & maintenance costs.

Happy security practitioners, happy security leaders. Automation is a big win, but just do it in the right order.