From Alerts to Automation: Lessons in SOC Resilience with Steven Dumolt

In this episode of SOC Unlocked, host Mick Leach sits down with longtime friend and colleague Steven Dumolt, Senior Information Security Engineer at Veeva, for an honest conversation about the realities of working in a SOC. From alert fatigue to the hype and reality of AI, Steven brings a practitioner’s perspective on what it really takes to keep a security operations team effective—and resilient.

With years of hands-on experience managing SIEM, SOAR, EDR, and automation, Steven shares the challenges of scaling security operations in a cloud-first world and how his team is navigating the increasing volume and sophistication of threats. He opens up about the importance of balance, teamwork, and documentation—and why curiosity and networking are still the best career accelerators for anyone looking to break into cybersecurity.

Insights

• SOC teams today face rising alert volumes, driven by faster, more sophisticated attacks.

• Automation helps, but deciding what to automate—and what still needs human judgment—remains critical.

• AI isn’t replacing analysts; it’s a tool that enables them to do higher-value work.

• Preventing burnout requires both smart playbooks and genuine human connection within teams.

Interested in being on the podcast?

Contact us at SOCUnlockedPodcast@abnormalsecurity.com