THE Human IOC: Why Security Professionals Struggle with Social Vetting argues that applying SOC‑level rigor to rumours about people and organisations can determine a security team’s effectiveness. Written by Joshua Goldfarb and published on 12 March 2026, the piece notes that teams vet information about threats and actors to avoid false positives, wasted resources, downtime, and damaged trust.
It suggests that people are less comfortable challenging information about individuals or organisations, making negative information harder to vet than factual security data. The article offers practical techniques for vetting negative information, including asking questions, asking for evidence, approaching the subject directly, considering the source, and reviewing history to assess reliability.
It emphasises that vetting people and organisations, like information, is worth the effort because neglecting it can harm an enterprise’s security posture. According to SecurityWeek, these approaches help security teams expose the truth and prevent harmful misjudgments.