Fig Security Operations Resilience is a platform designed to help Security Operations Centers (SOCs) maintain continuous detection and response effectiveness in the face of both unplanned and planned changes to their infrastructure and data pipelines. The platform addresses two core problems: 1. Drift (unplanned changes): Upstream changes in data sources or infrastructure can silently break detection rules and automation workflows without any alert or notification. Fig detects these breakages as they occur, traces the root cause, suggests and tests a fix, and can deploy the repair automatically upon user approval. 2. Planned changes: When SOC teams intentionally modify their infrastructure or expand coverage, the risk of breaking existing detections slows down progress. Fig allows teams to model and simulate proposed changes before they reach production, then deploy them in a controlled manner with version control and rollback capability. Core capabilities include: - Drift detection: Identifies when a detection or response workflow breaks due to upstream changes - Drift repair: Automated root cause tracing, fix suggestion, testing, and deployment - Change modeling: Simulation of planned initiatives to assess impact before production deployment - Production deployment: Centralized deployment with version control and rollback support The platform is positioned as infrastructure-agnostic, supporting open-source and commercial SIEM/data pipeline environments. It integrates with tools such as Elasticsearch, AWS S3, Databricks, Google SecOps, and CrowdStrike Falcon, among others.