Evolving uses of the kill chain framework


In order to defeat attackers, automation is essential, especially given the worldwide shortage of skilled security personnel. As data volumes and networks have expanded, now encompassing mobile networks and cloud services, there is too much data to make sense of via manual methods.

  • SIEM systems are morphing into full-fledged threat lifecycle management technology.
  • Advanced security analytics that incorporate machine learning and artificial intelligence are key to making sense of massive volumes of data generated by computer systems and security controls.
  • User and entity behaviour analytics capabilities built into such a platform will enable organisations to vastly improve their ability to efficiently and effectively detect and respond to security incidents and threats. They also extend capabilities out to mobile devices