Close Menu
TechCentralTechCentral

    Subscribe to the newsletter

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    Facebook X (Twitter) YouTube LinkedIn
    WhatsApp Facebook X (Twitter) LinkedIn YouTube
    TechCentralTechCentral
    • News

      Public money, private plans: MPs demand Post Office transparency

      13 June 2025

      Coal to cash: South Africa gets major boost for energy shift

      13 June 2025

      China is behind in AI chips – but for how much longer?

      13 June 2025

      Singapore soared – why can’t we? Lessons South Africa refuses to learn

      13 June 2025

      10 red flags for Apple investors

      13 June 2025
    • World

      Yahoo tries to make its mail service relevant again

      13 June 2025

      Qualcomm shows off new chip for AI smart glasses

      11 June 2025

      Trump tariffs to dim 2025 smartphone shipments

      4 June 2025

      Shrimp Jesus and the AI ad invasion

      4 June 2025

      Apple slams EU rules as ‘flawed and costly’ in major legal pushback

      2 June 2025
    • In-depth

      Grok promised bias-free chat. Then came the edits

      2 June 2025

      Digital fortress: We go inside JB5, Teraco’s giant new AI-ready data centre

      30 May 2025

      Sam Altman and Jony Ive’s big bet to out-Apple Apple

      22 May 2025

      South Africa unveils big state digital reform programme

      12 May 2025

      Is this the end of Google Search as we know it?

      12 May 2025
    • TCS

      TechCentral Nexus S0E1: Starlink, BEE and a new leader at Vodacom

      8 June 2025

      TCS+ | The future of mobile money, with MTN’s Kagiso Mothibi

      6 June 2025

      TCS+ | AI is more than hype: Workday execs unpack real human impact

      4 June 2025

      TCS | Sentiv, and the story behind the buyout of Altron Nexus

      3 June 2025

      TCS | Signal restored: Unpacking the Blue Label and Cell C turnaround

      28 May 2025
    • Opinion

      Beyond the box: why IT distribution depends on real partnerships

      2 June 2025

      South Africa’s next crisis? Being offline in an AI-driven world

      2 June 2025

      Digital giants boost South African news media – and get blamed for it

      29 May 2025

      Solar panic? The truth about SSEG, fines and municipal rules

      14 April 2025

      Data protection must be crypto industry’s top priority

      9 April 2025
    • Company Hubs
      • Africa Data Centres
      • AfriGIS
      • Altron Digital Business
      • Altron Document Solutions
      • Altron Group
      • Arctic Wolf
      • AvertITD
      • Braintree
      • CallMiner
      • CYBER1 Solutions
      • Digicloud Africa
      • Digimune
      • Domains.co.za
      • ESET
      • Euphoria Telecom
      • Incredible Business
      • iONLINE
      • Iris Network Systems
      • LSD Open
      • NEC XON
      • Network Platforms
      • Next DLP
      • Ovations
      • Paracon
      • Paratus
      • Q-KON
      • SkyWire
      • Solid8 Technologies
      • Telit Cinterion
      • Tenable
      • Vertiv
      • Videri Digital
      • Wipro
      • Workday
    • Sections
      • AI and machine learning
      • Banking
      • Broadcasting and Media
      • Cloud services
      • Contact centres and CX
      • Cryptocurrencies
      • Education and skills
      • Electronics and hardware
      • Energy and sustainability
      • Enterprise software
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Lifestyle
      • Motoring
      • Public sector
      • Retail and e-commerce
      • Science
      • SMEs and start-ups
      • Social media
      • Talent and leadership
      • Telecoms
    • Events
    • Advertise
    TechCentralTechCentral
    Home » Company News » Next-generation security operations centres: Balancing tech with manpower

    Next-generation security operations centres: Balancing tech with manpower

    By Micro Focus9 February 2021
    Twitter LinkedIn Facebook WhatsApp Email Telegram Copy Link
    News Alerts
    WhatsApp

    Next-generation security operations centres (SOCs), although a much more machine learning-driven way of ensuring your data is protected, raise some interesting questions.

    Chief among these is who is responsible should there be a data breach, and whether to insource or outsource your IT requirements in the current environment, which is increasingly regulated.

    On hand to debate these issues was a panel of local experts, who joined the latest TechCentral Micro Focus panel to discuss next-gen SOCs.

    Ian Keller, customer security director at Ericsson, explains that next-gen SOCs are simply the evolution of units that deal with security issues on an organisational and technical level. As Keller says, “next gen” is more about harnessing artificial intelligence as there’s more machine learning involved. “You’re trying to reduce the reliance on the human factor as much as possible. It’s the automation of it,” he says.

    Ian Keller

    Your SOC is next gen if it offers these features:

    • Threat visibility;
    • New and unknown attacks;
    • Active defence;
    • Hunt and respond;
    • Cybersecurity teams using AI and machine learning; and
    • Robotics

    As soon as you start adding machine learning into the equation, you run into the skills issue, however. Machine learning is a relatively new discipline, and skills are in short supply and high demand. Additionally, machines coming into the organisation often mean that humans are replaced as a greater set of skills is required to integrate the more intelligent technology with the business.

    “I think all companies, including us, are struggling with this. It’s a human machine symbiosis, to marry the two,” says RCL Foods group IT governance manager Prien Pillai.

    Prien Pillai

    RCL is 100% outsourced when it comes to technology. “We are reliant on best-of-breed key IT service providers to manage our security layers.”

    However, what this means, Pillai says, is that you have a “third party managing your security, but you don’t have internal resources that understand it or the learnings to challenge them, as to whether we’re heading towards the right direction”. This requires that there is always a balance between internal and external, depending on who manages your security.

    That also opens up the question as to who is responsible for data breaches, if and when they happen.

    Janine West

    As Janine West, Investec’s data privacy officer, says, this depends on where the data breach occurs and whether it was a system issue that caused the data breach, or people. “People are our weakest link.”

    West adds that often it’s not even a training issue, it’s just a force of habit. “In my mind, privacy needs to be covered across the organisation. And we all need to do what’s required to make sure that we look after our own domains, but we all work together.”

    Russell Opland

    Adams & Adams’ data protection officer Russell Opland argues that the question of who is responsible for breaches becomes slightly different when IT security is outsourced.

    Opland points out that the Information Regulator, appointed in terms of the Protection of Personal Information Act, is leaning towards holding the designated official charged with ensuring compliance responsible for breaches. This is in contrast with international application over the past 20 years. “I think the regulator’s going to want to be making some examples right out the gate.”

    Tumelo Zwane

    When it comes to state security, however, the situation demands that a tight hold is kept on IT and its security components. CIO at the Special Investigating Unit Tumelo Zwane says the agency is strict on what happens to its data from in terms of its internal users. It also filters almost anything and everything. “Any e-mail that comes through is filtered, and when we send information out, it’s password protected. We try and regulate the data coming in or out as much as possible.”

    At the same time, the agency is moving from a mostly manual system to one in which several elements are automated so they can get into the comfortable position of “saying we’ve got all our guards all around”.

    Themba Maminze

    Themba Maminze, deputy director of operational security at the department of international relations & cooperation (Dirco), says costs are an issue when it comes to deciding whether to go with automated or manual systems. Currently, Dirco’s systems are 60% manual and 40% automated. Although Dirco doesn’t have an SOC, it is moving to a situation in which all its security systems are interconnected; a centre that will answer all its needs, Maminze adds. “Balancing your manpower with your technology in this age of unemployment is always a juggling act.”

    Keller adds that one of the biggest arguments against an SOC is the cost of training and retaining staff, who get bored and take their skills elsewhere.

    Wilma Nel

    The Land Bank’s head of IT governance, risk and compliance, Wilma Nel, points out that another issue is that staff are becoming lax during the Covid era. A simple example she cites is securing a home network, which people may not know how to do, and they may not reach out to IT to ask for help.

    Henry Denner

    The Gautrain’s information security officer, Henry Denner, references a recent study that found that most of the senses we use to communicate during a face-to-face meeting are absent during virtual meetings.

    “Most of the time, we also don’t even have our cameras on, which means you have to just rely on your sense of hearing to pick up on people’s tones.” This, he says, means that people lose concentration, which leads to mistakes being made.

    Thamsanqa Dlamini

    PSG senior security architect Thamsanqa Dlamini says that when security was being designed for PSG, they ensured that people could work from anywhere in the world. “We need to make sure that the PC itself is secure.”

    Adele Jones

    Nedbank has found that, because of a lack of human interaction and lockdown, people who tend to trust easily are more gullible, and need more guidance, said its lead architect of information security and blockchain, Adele Jones.

    Sithembile Songo

    The Public Investment Corp’s head of information security and risk management, Sithembile Songo, takes it a step further: “I believe, with all of us working from home now, we need to have visibility into everything that is happening. That’s the only way we can be able to track and see what is happening and whether we are secure or not. If we don’t have that visibility, we are wasting our time.”

    • This promoted content was paid for by the party concerned


    Adele Jones Henry Denner Ian Keller Janine West Micro Focus Prien Pillai Russell Opland Sithembile Songo Thamsanqa Dlamini Themba Maminze Tumelo Zwane Wilma Nel
    Subscribe to TechCentral Subscribe to TechCentral
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email Copy Link
    Previous ArticleElon Musk and Tesla just lit a rocket under bitcoin
    Next Article Systems Print continues digital migration with Xerox

    Related Posts

    Understanding the Modernization Maturity Model

    3 February 2023

    Achieving cost-efficient cloud content management

    6 December 2022

    Why it’s time to focus on hybrid cloud management

    8 November 2022
    Company News

    Huawei Watch Fit 4 Series: smarter sensors, sharper design, stronger performance

    13 June 2025

    Change Logic and BankservAfrica set new benchmark with PayShap roll-out

    13 June 2025

    SAPHILA 2025 – transcending with purpose, connection and AI-powered vision

    13 June 2025
    Opinion

    Beyond the box: why IT distribution depends on real partnerships

    2 June 2025

    South Africa’s next crisis? Being offline in an AI-driven world

    2 June 2025

    Digital giants boost South African news media – and get blamed for it

    29 May 2025

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2025 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.