AI in Security Operations Centres: What We’ve Learnt so Far

  • Date 05 Jun 2019

AI in Security Operations Centres: What We’ve Learnt so Far

05 Jun 2019, 12:30 - 13:15

Insight Stage

Is it time for the traditional multi-tiered SOC to end? Get beyond the InfoSec buzzwords in this practitioner-lead session in which we'll we share our insights and learning from live deployments of AI within Security Operations Centres. 

Time and knowledge are key factors that can make the difference between a contained incident and a full blow breach or successful attack. We’ll discuss how AI is empowering analyst teams to handle unpatched and zero-day vulnerabilities, to detect and respond to advanced attackers, and work at a previously unattainable speed and efficacy.

Learning Outcomes:

  1. Evaluate your SOC's security maturity
  2. Hear how to build and enable purple teams
  3. Identify SOC automation opportunities (and where not to automate)
  4. Learn techniques that will reduce attacker dwell time



  • Luke Richards


    Consulting Analyst


    Luke Richards is a consulting analyst at Vectra and spends his days advising our clients how to integrate AI into their security processes. ...

Business Issues covered

  1. What will this session help you to do?
    • Build a robust cyber response and resilience strategy
    • Mitigate the effects of new vulnerabilities and exploits‎




We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies.