Threat Hunting is More Pervasive, but the General Value is Still Not Widely Understood
According to past SANS surveys, many organizations are not hunting for threats before they become incidents. The SANS 2020 Threat Hunting Survey looks at why that is and how security departments can reap the benefits of proactive hunting. This year, SANS took a deeper dive into how threat hunters are fulfilling their missions, which tools they are selecting, and why they are using certain tools or procedures.
This paper provides an informed view of what the data says and where organizations’ security departments need to focus their future threat hunting efforts. Certified SANS instructors, Mathias Fuchs and Joshua Lemon cover these key topics:
- What does threat hunting mean to organizations today?
- Dedicated threat hunting teams vs. multifunction roles
- Approaches to threat hunting
- Measuring threat hunting effectiveness
Read the paper to get recommendations on how your organization can better utilize threat hunting and fortify your network from threat actors.