This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
เนื้อหาจัดทำโดย Anton Chuvakin เนื้อหาพอดแคสต์ทั้งหมด รวมถึงตอน กราฟิก และคำอธิบายพอดแคสต์ได้รับการอัปโหลดและจัดเตรียมโดย Anton Chuvakin หรือพันธมิตรแพลตฟอร์มพอดแคสต์โดยตรง หากคุณเชื่อว่ามีบุคคลอื่นใช้งานที่มีลิขสิทธิ์ของคุณโดยไม่ได้รับอนุญาต คุณสามารถปฏิบัติตามขั้นตอนที่อธิบายไว้ที่นี่ https://th.player.fm/legal
ที่คล้ายกับ Cloud Security Podcast by Google
The award-winning WIRED UK Podcast with James Temperton and the rest of the team. Listen every week for the an informed and entertaining rundown of latest technology, science, business and culture news. New episodes every Friday.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
This feed includes all episodes of Paul's Security Weekly, Enterprise Security Weekly, Business Security Weekly, Application Security Weekly, and Security Weekly News! Your one-stop shop for all things Security Weekly!
…
continue reading
Daily update on current cyber security threats
…
continue reading
We help founders make something people want.
…
continue reading
The director’s commentary track for Daring Fireball. Long digressions on Apple, technology, design, movies, and more.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Learn how people are using AI at work to collaborate, find focus, and get stuff done—not at some point in the future, but today. Hear founders, researchers, and engineers talk about the problems they’re solving with the help of new and emerging AI tools, and how AI can help you spend more time on the work that matters most.
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
Player FM - แอป Podcast
ออฟไลน์ด้วยแอป Player FM !
ออฟไลน์ด้วยแอป Player FM !
))
EP73 Your SOC Is Dead? Evolve to Output-driven Detect and Respond!
Manage episode 333526998 series 2892548
เนื้อหาจัดทำโดย Anton Chuvakin เนื้อหาพอดแคสต์ทั้งหมด รวมถึงตอน กราฟิก และคำอธิบายพอดแคสต์ได้รับการอัปโหลดและจัดเตรียมโดย Anton Chuvakin หรือพันธมิตรแพลตฟอร์มพอดแคสต์โดยตรง หากคุณเชื่อว่ามีบุคคลอื่นใช้งานที่มีลิขสิทธิ์ของคุณโดยไม่ได้รับอนุญาต คุณสามารถปฏิบัติตามขั้นตอนที่อธิบายไว้ที่นี่ https://th.player.fm/legal
Guest:
- Erik Bloch, Senior Director of Detection and Response at Sprinklr
Topics:
- You recently coined a concept of “output-driven Detection and Response” and even perhaps broader “output-driven security.” What is it and how does it work?
- Detection and response is alive (obviously), but sometimes you say SOC is dead, what do you mean by that?
- You refer to a federated approach for Detection and Response” (“route the outcomes to the teams that need them or can address them”), but is it workable for any organization?
- What about the separation of duty concerns that some raise in response to this? What about the organizations that don’t have any security talent in those teams?
- Is the approach you advocate "cloud native"? Does it only work in the cloud? Can a traditional, on-premise focused organization use it?
- The model of “security team as a decision-maker, not an implementer” has a bit of a painful history, as this is what led to “GRC-only teams” who lack any technical knowledge. Why will this approach work this time?
Resources:
- “RIP SOC. Hello D-IR”
- “Kill your SOC with a D-IR model”
- “Security De-Engineering: Solving the Problems in Information Risk Management” book
- “A SOCless Detection Team at Netflix”
- “Achieving Autonomic Security Operations: Automation as a Force Multiplier”
- “Start with Why: How Great Leaders Inspire Everyone to Take Action“ book
- “Think Like a Monk: The Secret of how to Harness the Power of Positivity and be Happy Now” book
- “On “Output-driven” SIEM”
- “SOC is Not Dead: How to Grow and Develop Your SOC for Cloud and Beyond” (ep58)
170 ตอน
แบ่งปัน
Manage episode 333526998 series 2892548
เนื้อหาจัดทำโดย Anton Chuvakin เนื้อหาพอดแคสต์ทั้งหมด รวมถึงตอน กราฟิก และคำอธิบายพอดแคสต์ได้รับการอัปโหลดและจัดเตรียมโดย Anton Chuvakin หรือพันธมิตรแพลตฟอร์มพอดแคสต์โดยตรง หากคุณเชื่อว่ามีบุคคลอื่นใช้งานที่มีลิขสิทธิ์ของคุณโดยไม่ได้รับอนุญาต คุณสามารถปฏิบัติตามขั้นตอนที่อธิบายไว้ที่นี่ https://th.player.fm/legal
Guest:
- Erik Bloch, Senior Director of Detection and Response at Sprinklr
Topics:
- You recently coined a concept of “output-driven Detection and Response” and even perhaps broader “output-driven security.” What is it and how does it work?
- Detection and response is alive (obviously), but sometimes you say SOC is dead, what do you mean by that?
- You refer to a federated approach for Detection and Response” (“route the outcomes to the teams that need them or can address them”), but is it workable for any organization?
- What about the separation of duty concerns that some raise in response to this? What about the organizations that don’t have any security talent in those teams?
- Is the approach you advocate "cloud native"? Does it only work in the cloud? Can a traditional, on-premise focused organization use it?
- The model of “security team as a decision-maker, not an implementer” has a bit of a painful history, as this is what led to “GRC-only teams” who lack any technical knowledge. Why will this approach work this time?
Resources:
- “RIP SOC. Hello D-IR”
- “Kill your SOC with a D-IR model”
- “Security De-Engineering: Solving the Problems in Information Risk Management” book
- “A SOCless Detection Team at Netflix”
- “Achieving Autonomic Security Operations: Automation as a Force Multiplier”
- “Start with Why: How Great Leaders Inspire Everyone to Take Action“ book
- “Think Like a Monk: The Secret of how to Harness the Power of Positivity and be Happy Now” book
- “On “Output-driven” SIEM”
- “SOC is Not Dead: How to Grow and Develop Your SOC for Cloud and Beyond” (ep58)
170 ตอน
ทุกตอน
×
ขอต้อนรับสู่ Player FM!
Player FM กำลังหาเว็บ
ที่คล้ายกับ Cloud Security Podcast by Google
This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
The award-winning WIRED UK Podcast with James Temperton and the rest of the team. Listen every week for the an informed and entertaining rundown of latest technology, science, business and culture news. New episodes every Friday.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
This feed includes all episodes of Paul's Security Weekly, Enterprise Security Weekly, Business Security Weekly, Application Security Weekly, and Security Weekly News! Your one-stop shop for all things Security Weekly!
…
continue reading
Daily update on current cyber security threats
…
continue reading
We help founders make something people want.
…
continue reading
The director’s commentary track for Daring Fireball. Long digressions on Apple, technology, design, movies, and more.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Learn how people are using AI at work to collaborate, find focus, and get stuff done—not at some point in the future, but today. Hear founders, researchers, and engineers talk about the problems they’re solving with the help of new and emerging AI tools, and how AI can help you spend more time on the work that matters most.
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
Player FM - แอป Podcast
ออฟไลน์ด้วยแอป Player FM !
ออฟไลน์ด้วยแอป Player FM !
