PUBLISHER: IDC | PRODUCT CODE: 1919574
PUBLISHER: IDC | PRODUCT CODE: 1919574
IDC PlanScape: DevSecOps/Outsourced SOC Integration
This IDC PlanScape offers guidance on how organizations can integrate outsourced security services seamlessly with internal DevSecOps tools, platforms, and teams. Specifically, it details the challenges that commonly arise for customers of outsourced security services providers, as well as actionable tactics and strategies for mitigating those difficulties as part of a holistic DevSecOps strategy that draws on internal and external cybersecurity resources to full effect."Outsourcing the SOC and other security functions can solve many operational challenges in areas such as cybersecurity hiring and scalability," says Christopher Tozzi, adjunct research advisor with IDC's IT Executive Programs (IEP). "But it also creates new difficulties, especially when it comes to connecting external security teams, tools, and dataflows to a company's internal DevSecOps assets."
IDC PlanScape Figure
Executive Summary
Why Is DevSecOps/Outsourced SOC Integration Important?
- Communication difficulties
- Incomplete mitigation solutions
- Limited cybersecurity service offerings
- Cost management challenges
- Onboarding difficulties
- Missed contractual promises
- Security and privacy risks
- Inability to outsource "ownership" of cybersecurity
What Is DevSecOps/Outsourced SOC Integration?
Who Are the Key Stakeholders?
How Can My Organization Take Advantage of DevSecOps/Outsourced SOC Integration?
- Define clear scopes of service
- Filter outsourced SOC alerts
- Push - don't pull - data to external SOC systems
- Require documentation
- Implement automations
- Seek insights from operations staff
- Assess providers as part of postmortems
- Define external security service provider roles in playbooks
Advice for Technology Buyers
Related Research
