Skip to content
View in the app

A better way to browse. Learn more.

hosang I.T.

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

compuquip

Members
  • Joined

  • Last visited

    Never

Everything posted by compuquip

  1. Faster detection and response are two of the clearest promises in the move toward an agentic SOC, but speed on its own is not the point. What matters is whether managed SOC providers can reduce the time it takes to qualify, investigate, escalate, and act without making the workflow harder to trust. In this blog, we look at how agentic workflows can improve MTTD and MTTR, and what that actually means in day-to-day managed security operations. View the full article
  2. Trust is one of the biggest barriers to adoption in autonomous security operations, and it is rarely solved by messaging alone. It is earned when the workflow proves it can operate with speed, visibility, and accountability at the same time. In this blog, we look at what actually builds trust in autonomous security operations, why human validation still matters, and what IT leaders should expect before giving AI-driven workflows more responsibility. View the full article
  3. AI SOC triage agents are getting a lot of attention, but the market is still ahead of the standard many buyers are using to evaluate them. In this blog, we look at what a triage agent should actually do inside real security operations, where it should create measurable value, and where it should stop short of replacing analyst judgment. The goal is not a faster interface. It is better triage, better case quality, and less wasted analyst effort. View the full article
  4. Reducing alert noise is one of the clearest promises in the move toward an agentic SOC. But better triage is not just about pushing alerts through faster. In this blog, we look at how agentic SOC workflows reduce noise, improve triage quality, and create a more usable path from signal to decision. View the full article
  5. As security operations become more autonomous, the real question is not whether humans stay involved. It is where their involvement matters most. In this blog, we break down what should stay human in an autonomous SOC, what can move into agentic workflows, and how oversight needs to be designed so it is meaningful instead of symbolic. View the full article
  6. AI agents are becoming part of managed security operations, but the real question for buyers is not whether they exist. It is where they belong in the workflow and what responsibilities they should actually take on. In this blog, we look at where AI agents fit inside a managed SOC workflow, how they support agentic SOC and autonomous SOC models, and why human oversight remains essential to credible service delivery. View the full article
  7. Moving toward an agentic SOC is not a single platform decision. It is an operating model shift that changes how triage, investigation, and response move through the SOC. In this blog, we look at how organizations can evolve from a human-led SOC to an agentic SOC model in a phased, controlled way that improves efficiency without losing oversight. View the full article
  8. Managed SOC services are entering a transition period. Customers still want expert oversight, but they also expect a service model that can keep up with rising alert volume, faster attack cycles, and tighter expectations around efficiency and visibility. In this blog, we look at why agentic operations are becoming the new standard in the managed SOC market and what that means for organizations evaluating the future of autonomous SOC and agentic SOC services. The current 2026 conversation around AI in security makes one thing clear: buyers are interested in progress, but they are equally focused on accountability, explainability, and measurable results. View the full article
  9. Security teams are not asking for AI just to modernize the language of the SOC. They are asking for a better way to reduce repetitive work, move faster on meaningful threats, and preserve analyst time for decisions that actually require judgment. In this blog, we look at how agentic security operations improve triage, escalation, and response, and why those workflow changes matter for organizations evaluating autonomous SOC and agentic SOC models. Current 2026 market coverage is reinforcing the same core idea: the real debate is no longer whether AI belongs in security operations, but how far it should go, how oversight should work, and what measurable operational improvement buyers should demand. View the full article
  10. Alert fatigue remains one of the clearest symptoms of a SOC operating model under strain. In this blog, we look at whether an autonomous SOC can actually reduce alert fatigue, where agentic SOC workflows help most, and why human oversight still needs to remain part of the model. The goal is not full hands-off security, but a better balance between machine-speed execution and accountable decision making. View the full article
  11. AI agents are becoming a serious topic in security operations because teams need more than static automation to keep pace with modern threats. In this blog, we explain what AI agents actually do inside the SOC, how they support autonomous SOC and agentic SOC models, and what security teams should understand before they adopt them. The goal is not to separate hype from reality with broad claims, but to show where AI agents can create operational value and where human oversight still matters most. View the full article
  12. Security teams have invested in automation for years, but automation alone has not solved the operational bottlenecks inside the SOC. The next shift is not simply more playbooks. In this blog, we look at how the SOC is moving from automation to autonomy, what that change actually means, and why agentic SOC models are emerging as the next operating model for modern security operations. View the full article
  13. Security operations has not become less important. It has become harder to operate at the level the business now requires. In this blog, we examine why the modern SOC is straining under alert volume, attack speed, and operational complexity, and why autonomous SOC and agentic SOC models are gaining attention as a practical response. View the full article
  14. The difference between a traditional SOC and an agentic SOC is not just technology. It is a fundamental redesign of how security work gets done. In this blog, we examine how AI agents change triage, investigations, escalation, and response, and why many organizations are moving toward agentic SOC models in a phased, controlled way. View the full article
  15. Security operations is changing because the volume, velocity, and complexity of modern threats are outpacing what manual workflows can sustain. An autonomous SOC gives IT and security leaders a new operating model where AI-driven triage, investigation, and orchestration reduce repetitive work while preserving human oversight. In this blog, we break down what an autonomous SOC really means, where most organizations are today, and how to evaluate the shift with clarity. View the full article
  16. RSA 2026 covered no shortage of ground. From identity and platform consolidation to exposure management, detection, and the expanding role of AI across security operations, there was a lot competing for attention. But beneath the broader conference conversation, one theme felt especially relevant from an operational standpoint: how security teams are rethinking the Security Operations Center itself. That shift stood out. The discussion was less about AI in the abstract and more about how modern SOCs reduce noise, improve triage, accelerate response, and maintain human oversight. For organizations evaluating SOC options in 2026, that is where the conversation becomes practical. View the full article
  17. AI in network security continues to mature across detection, analytics, and response. One of the most visible applications is automated firewall management -accelerating rule changes while reducing manual effort. The promise is efficiency. The risk is incomplete context. Most traditional automation models assume a single device, a net-new rule, and a static traffic path. In production environments, those assumptions rarely hold. Firewall policy exists within layered rulebases, inherited device groups, dynamic routing conditions, and disaster recovery architectures. When automated firewall management acts without fully modeling that context, it increases configuration velocity while introducing structural fragility. This is where the difference between firewall agents vs traditional automation becomes operationally significant. View the full article
  18. Across this series, we’ve looked at how threat detection evolves when AI becomes part of SOC operations from anomaly detection, to triage, to detection engineering. The final challenge is not design. It’s operation. Deploying AI-driven detection is relatively easy. Sustaining it across analysts, shifts, environments, and time is where most SOCs struggle. At scale, AI becomes an operational dependency. And dependencies require ownership. View the full article
  19. Detection engineering has never been about writing perfect rules. It has always been about managing tradeoffs coverage versus noise, speed versus accuracy, flexibility versus maintainability. As AI becomes embedded in SOC workflows, those tradeoffs don’t disappear. They change. In an AI-enabled SOC, detection engineering is no longer about forcing logic to answer a single question - is this malicious or not? Instead, it’s about designing detections that produce clean, meaningful signals that AI and analysts can evaluate together. View the full article
  20. As AI becomes embedded in security operations, many IT and security managers are starting the year with AI already active in their SOC workflows. That’s a positive step — but it also changes what “operational hygiene” looks like. AI doesn’t fail loudly when something is wrong. It fails quietly. That’s why the first week of the year is an ideal time to validate how AI is actually behaving inside the SOC — not in theory, but in daily operations. This isn’t about tuning models or adding new capabilities. It’s about confirming that AI is operating within expected boundaries, under human oversight, and delivering the outcomes it was introduced to achieve. View the full article
  21. Most SOC teams don’t struggle to detect threats. They struggle to decide what matters first. Alerts arrive constantly, often with limited context and varying quality. Analysts are expected to interpret them quickly, accurately, and consistently - even as environments change and queues grow. Triage becomes less about analysis and more about managing pressure. This is where AI begins to matter, not as a replacement for analysts, but as a way to restore structure to the triage process. View the full article
  22. Anomaly detection has become one of the most discussed and most misunderstood, applications of AI in security operations. In theory, it promises early threat identification and broader coverage beyond static rules. In practice, many SOC teams experience inconsistent results and growing uncertainty. View the full article
  23. Threat detection has always been central to security operations. What has changed is not the goal (identifying malicious activity) but the way SOC teams arrive at confident decisions. View the full article
  24. Becoming an AI-ready SOC doesn’t happen all at once. It’s a progression—one that moves from understanding AI maturity, to assessing your operations, to measuring readiness, and finally, to operationalizing AI in ways that enhance detection, response, and analyst performance. Below is a condensed roadmap that brings the entire series together. Each stage links to the deeper technical breakdown for teams that want to go further. View the full article
  25. “AI-ready” has become the security industry’s favorite claim YET few teams can explain what it actually means. The phrase is everywhere: on product pages, slide decks, board updates, and vendor pitches. But in practice, AI readiness is neither a tagline nor a milestone. It’s a measurable operational state. As organizations move toward more intelligent and adaptive security operations, the question becomes unavoidable: How do you know your SOC is truly ready for AI? The answer lies in treating AI readiness as something quantifiable; not philosophical. View the full article

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.