- Are the right logs enabled?
- Is your EDR working correctly?
- Would you notice a sudden increase or decrease in events from critical sources?
- What can practitioners do to ensure the success of their SIEM deployment?
With 25 years of experience in cybersecurity, I have dedicated my career to defending organizations against evolving threats. I spent my first 11 years securing U.S. financial institutions, designing resilient, monitorable security architectures. Transitioning into consulting, I guided numerous organizations in building and optimizing Security Operations Centers (SOCs) and Security Information and Event Management (SIEM) systems. Over the past seven years, I have focused on the product side, shaping solutions that empower customers to enhance their security posture. My expertise spans the entire defensive spectrum, from configuration and architecture to continuous monitoring.
- Security Weekly listeners save $100 on their RSAC Conference 2025 Full Conference Pass! RSA Conference will take place April 28 to May 1 in San Francisco and on demand. To register using our discount code, please visit securityweekly.com/rsac25 and use the code 5U5SECWEEKLY! We hope to see you there!











