Whether they have a formal security operations center (SOC) or a small team of one or two cybersecurity personnel, state and local governments and education institutions face a changing world when it comes to monitoring for, identifying and responding to today’s threats. An explosion of new devices and endpoints: the expansion of organizational boundaries, and a nonstop volley of phishing, ransomware and other attacks have put enormous pressures on security analysts.