March 25, 2020

Call for Responses: 2020 SANS Threat Hunting Effectiveness Survey

Written by: cyborgsecurity

The SANS Institute is now conducting the 2020 Threat Hunting Effectiveness Survey to gather insights on how organizations approach threat hunting, the barriers to success, and how they measure their efforts.

Last year’s survey, The Differing Needs of New and Experienced Hunters, collected industry data from 575 respondents to help organizations understand what threat hunting is, why it is essential to protect their organizations, and how novice and experienced hunters can improve their processes.

Key findings included:

  • 35% create hypotheses to drive their threat hunting efforts.
  • 56% use threat intelligence to hypothesize where attackers may be found.
  • 34% of hunters have major responsibilities for managing SOC alerts; 26% perform IR and forensics of current breaches.
  • 71% indicate technology is the first or second focus of their threat hunting resources, followed by staffing (47%) and training (41%).

The results confirmed that many organizations were still dual-tasking threat hunters, and very few over the past three years had established a dedicated team.

Today, many organizations around the globe struggle with getting top-tier threat hunters. While threat hunting has become a mandatory task to establish and maintain an acceptable level of security, the demand for skilled hunters exceeds the number of available specialists by far. The challenge now is to render the best results with the available resources by allocating them wisely.


Interested in Survey Results?

The annual survey will be open to respondents until Thursday, March 26, 2020 and results will be shared during a webcast at 1 PM ET May 27, 2020.

At the end of the survey, respondents will have the opportunity to enter a drawing for a $400 Amazon gift certificate.

Join us by registering now for this webcast to learn how your peers are implementing threat hunting and how effective it is link.








About the Author