With the increasing number and variety of platforms and application coming into existence and the amount of data generated by those platforms, cyber threats are also increasing at an alarming rate every day. The ability for organizations to defend against those targeted attacks quickly and effectively is becoming difficult due to the variety and the velocity of data. In order to be secure and protect organizational assets, organizations need to take proactive approach as to detect and respond to cyber-attacks.
The process of detecting and quantifying threats should be automated and aligned with tools, tactics and procedures (TTPs) of attackers. Ideally implemented threat detection includes detective, preventive and reactive measures to detect and block attacks when possible, discover and respond to threats quickly enough to minimize the impact.