Operationalizing Security: A Targeted Approach to 'SecOps'Rapid7 CEO Corey Thomas on Eliminating the Ad Hoc Approach to Security
Effective "SecOps" involves revamping security processes that are inconsistent and ad hoc to make them targeted and consistent, says Rapid7 CEO Corey Thomas.
"SecOps" - operationalizing security into a continuous, consistent process that's part of the fabric of the business - is difficult to achieve manually, Thomas says in an interview with Information Security Media Group. "The combination of intelligent automation, orchestration and thoughtful targeting of different processes and process maturity has led to very successful process re-engineering and process automation in security," he says.
In this audio interview (see player link below image) Thomas speaks about:
- "SecOps" and its connotations in security;
- The challenges in operationalizing security and achieving "SecOps";
- Why automation and orchestration will revolutionize security;
- Results of a new global study on susceptibility to cyber risks.
In addition to being president and CEO of Rapid7, Thomas also serves on its board of directors. In 2018, he was elected to the Cyber Threat Alliance board of directors and the Massachusetts Cybersecurity Strategy Council. He also serves on the Blue Cross Blue Shield of Massachusetts board. Before joining Rapid7, Thomas was vice president of marketing at Parallels Inc., group project manager of Microsoft's server and tools division and a consultant at Deloitte Consulting.