Security platforms vs best of breed point products: What should you deploy? [CyberWire-X]

Cybersecurity practitioners have relied on installing technical tools to address new risks and compliance requirements for the past 20 years. Over time, the number of tools managed by infosec teams has increased, leading to immense complexity. Two strategies have emerged to address this issue: continuing to install more technical tools in each data island and manually processing telemetry, or choosing a security vendor's platform that performs most security tasks but risks creating a single point of failure. Experts Mike Higgins from Haven Health and Greg Notch from the National Hockey League discuss the matter with Rick Howard from the CyberWire's Hash Table. Later, Lior Div from Cybereason shares their perspective on this debate. The complexity of managing numerous data islands with company material information has grown due to bring-your-own device policies, SaaS applications, and hybrid cloud environments. The number of individual data islands requiring security coverage has increased, adding to the complexity. The first strategy involves bigger teams and helper-automation-tools like SOAR platforms and SIEM databases to process telemetry. The second strategy relies on a single security vendor's platform, which may create a single point of failure. Experts weigh the pros and cons of each strategy in addressing the growing complexity of cybersecurity management.