INTERFACE Honolulu
Presented by Tom Simonis, Sr Sales Engineer, Enterprise US • Arctic Wolf
This presentation uses the analogy of building a fire department to explore the realities, risks, and misconceptions organizations face when attempting to build and operate an in-house cybersecurity function or Security Operations Center (SOC). Grounded in global research from over 1,000 security and IT professionals, the session highlights persistent trends such as rising data breaches, increasing ransomware attacks, growing attack surfaces, and the ongoing shortage of skilled cybersecurity talent. It demonstrates why cybersecurity—while mission-critical to business continuity—is not a core business function for most organizations, and why treating it as such often leads to inefficiency, burnout, wasted spend, and increased risk.
Through real-world data and practical examples, the presentation walks through what “state-of-the-art” cyber defense actually entails: 24x7 coverage, specialized skills, integrated tools, continuous improvement loops, and proactive threat intelligence. It contrasts this ideal with the common reasons in-house SOCs fail, including limited operating hours, lack of authority, underestimation of integration and tuning efforts, overreliance on point solutions, and the misconception that technology or AI alone can solve structural gaps. The session concludes with actionable insights on measuring and improving cybersecurity maturity, emphasizing the importance of people, process, and operational discipline—and reinforcing why many organizations achieve better outcomes by focusing on preparedness, resilience, and strategic partnerships rather than trying to “build their own fire department.”
Key themes addressed include:
- Current cybersecurity and ransomware trends impacting organizations globally
- The true cost and complexity of building and maintaining an in-house SOC
- Why talent shortages and burnout continue to undermine security operations
- Characteristics of mature, state-of-the-art cyber defense programs
- Common pitfalls that cause in-house SOCs to fail
- Practical guidance for measuring, optimizing, and continuously improving security posture