Past the Alert Count: Where Agentic SecOps Actually Helps
Discover how Somerford Associates and BlinkOps are moving beyond legacy SOAR to scale your SOC capacity using AI-driven, autonomous micro-agents.
- Thursday, 23rd July 2026
- 🇬🇧 10:00AM - 10:45AM BST 🇦🇪 1:00PM - 1:45PM UAE
- Virtual via Microft Teams
The Real SOC Bottleneck
Every vendor leads with the same line: thousands of alerts a day, analysts drowning. The number is inflated and most practitioners know it. The bottleneck was never the raw alert count. It's what happens after: triage that leans on a few senior analysts, in-depth investigation that takes time and context, remediation that waits on manual approvals and brittle playbooks.
Traditional SOAR promised to fix this. It moved the bottleneck instead of removing it, trading alert pressure for playbook maintenance and integration debt.
The Solution: Agentic SecOps
Somerford Associates is partnering with BlinkOps to apply agents across the SOC lifecycle, not bolt another tool onto the stack.
Join us for a 45-minute working session on where agentic approaches actually help: triage, in-depth investigation, and remediation. We'll show how natural language replaces scripting for building and running workflows, and how to keep agent actions predictable, auditable, and under control.
What You Will Learn:
Where the bottleneck really sits: Why SOAR moved the problem instead of solving it, and which parts of the lifecycle agents are ready to take on now.
Agents across the lifecycle: Applying agentic approaches from triage through in-depth investigation to remediation, not just one stage in isolation.
Orchestration without code: Driving actions across your existing stack, including Splunk, EDRs, and cloud infrastructure, in natural language instead of playbook scripting.
The agent harness: The architecture that makes agents safe to run in a SOC. How a structured harness scopes what each micro-agent can do and see, instead of turning a single model loose on your environment.
Agents with guardrails: Combining micro-agents with deterministic workflows so AI reasons and adapts while the actions it executes stay predictable and auditable.
Live Demo: Watch a workflow built from scratch in less than 15 seconds using simple, natural language prompts.
The Somerford Advantage: How our certified UK-based technical team helps you design, deploy, and optimise your first automated use cases for immediate ROI.
Your Host:
Ben Marrable
Senior Security Strategist at Somerford
Ben Marrable is a Senior Security Strategist at Somerford Associates, supporting and advising our customers with their long-term security strategy. With over 15 years in IT security, including more than a decade at Somerford Associates, Ben has worked with a wide range of enterprises to modernise how they operate. He specialises in helping organisations shift away from constantly putting out fires and reacting to incidents, focusing instead on building robust, proactive defences and providing customers with value. As a CISSP certified advisor in the SecOps space, Ben is a recognised expert at guiding security teams through today’s complex threat landscape, ensuring they get the most out of the security tools they already have in place and invest in.
Filip Stojkovski
Director of SecOps AI Strategy at BlinkOps
Filip Stojkovski is the Director of SecOps AI Strategy at BlinkOps, where he focuses on AI, agentic automation, and the future of security operations. With more than fifteen years of experience in cybersecurity, he has worked across SOC operations, detection engineering, threat intelligence, threat hunting, security architecture, and SecOps leadership.