2 min read
Situational Awareness Is Key to Faster, Better Threat Detection
Threats start with risks. Understanding risks is really just situational awareness. And that awareness leads to faster and better detection. The...
Read More2 min read
Threats start with risks. Understanding risks is really just situational awareness. And that awareness leads to faster and better detection. The...
4 min read
This time of year, people often ask me about highlights from the past year and what to expect in the new year. As I reflect back on major threats and...
3 min read
"UEBA, it’s just a use case." – Netenrich CISO Chris Morales
He’s not wrong. But I’d take it a step further. User entity and behavior analytics (...
5 min read
I recently sat down and interviewed Sharat Ganesh, Google Security product marketing leader, and Jonas Kelley, head of Americas MSSP partnerships for...
4 min read
One vendor uses 5 patterns, the other uses 500 rules. What’s better?
Anyone who has configured a SIEM or UEBA (e.g., QRadar, Splunk, ArcSight,...
2 min read
MITRE strategy 10 says measure performance to improve performance. It’s important to set a baseline of where resources spend their time and energy —...
3 min read
As MITRE points out in strategy 9 of its 11 Strategies of a World-class Cybersecurity Operations Center, cross-functional communication is key to a...
3 min read
Previous strategies in MITRE’s 11 Strategies of a World-class Cybersecurity Operations Center stressed the importance of collecting the right data —...
3 min read
Strategy 6 of MITRE’s 11 Strategies of a World-class Cybersecurity Operations Center focuses on cyber threat intelligence (CTI) data. Strategy 7, on...
3 min read
The fifth strategy in MITRE’s 11 Strategies of a World-class Cybersecurity Operations Center counsels organizations to prioritize incident response...
The best source of information for Security, Networks, Cloud, and ITOps best practices. Join us.