.png)
How SOCs can safely automate response without breaking the business.
Security teams have invested heavily in detection. They can ingest alerts. Correlate signals. Enrich data. But when it comes to response, many organisations still hesitate.
Why? Because automation without context can disrupt operations, impact users, and create unintended business consequences.
At the same time, attackers are evolving. Social engineering and credential theft campaigns are becoming more human-centric, harder to detect, and increasingly difficult for SOC teams to respond quickly.
Join Bastion Security for an executive discussion exploring how organisations can safely automate response through a risk-aligned approach. This session will unpack how leading SOC teams are balancing automation with human oversight to improve response speed without creating operational risk.
What You’ll Learn:
- Why detection alone is no longer enough
- Why many organisations still don’t trust automation
- How social engineering attacks are evolving
- Why collaboration platforms like Microsoft Teams are becoming attack surfaces
- The difference between human-in-the-loop vs human-on-the-loop models
- What response actions should be automated
- How Bastion approaches risk-aligned response automation
Venue: Bastion Security Offices, Level 9, 10 Brandon Street, Wellington
Date: 28 May 2026
Hosts: James Fitzsimmons, Head of Managed Security Services
Ethan King, SOC Lead
Time: 5:30pm – 7:30pm