Enterprise Security WeeklySubscribe
AI/ML, Security Operations, SOC

A SecOps Medley: we talk automation, AI, data management, and EDR evaluations – Allie Mellen – ESW #394

We couldn't decide what to talk to Allie about, so we're going with a bit of everything. Don't worry - it's all related and ties together nicely.

  • First, we'll discuss AI and automation in the SOC - Allie is covering this trend closely, and we want to know if she's seeing any results yet here.
  • Next, we'll discover SecOps data management - the blood that delivers oxygen to the SOC muscles.
  • Finally, we'll discuss MITRE's recent EDR evaluations - there was some contention around some vendors claiming to ace the test and we're going to get the tea on what's really going on here!

For each of these three topics, these are the blog posts they correspond with if you want to learn more:

  1. Generative AI Will Not Fulfill Your Autonomous SOC Hopes (Or Even Your Demo Dreams)
  2. If You’re Not Using Data Pipeline Management For Security And IT, You Need To
  3. Go Beyond The MITRE ATT&CK Evaluation To The True Cost Of Alert Volumes
Full episode and show notes

Guest

Principal Analyst at Forrester Research

Allie Mellen is a Forrester analyst covering security operations, nation-state threats, and the use of automation, machine learning, and AI in security tools. She has been in the technology industry for over a decade in various engineering roles: doing research at MIT, running her own engineering consultancy, and being a hacker before finally becoming a security practitioner. She now advises Fortune 500 CISOs and security teams on their detection and response practice and frequently speaks at industry-leading events and with the press.

Hosts

Principal Researcher at The Defenders Initiative
Principal Analyst - Security at theCUBE Research

Related

You can skip this ad in 5 seconds