The Last Watchdog

OCTOBER 23, 2023

And now, early adopters of security data lakes like Snowflake are saving more than two-thirds of what they were paying for their Splunk license. The Cisco acquisition shall exacerbate these challenges and speed up the adoption of security data lakes.

Architecture 261

Architecture Threat Detection Engineering Data collection 261

CyberSecurity Insiders

SEPTEMBER 22, 2022

Instead, many are looking to do a better job of identifying and mitigating threats before they can harm their business. SIEMs , in their inherent, built-in bias to complete data collection, means that a security team looking to identify threats will wade through oceans of irrelevant log data in the hopes of uncovering a danger.

Data collection 139

Data collection Technology Threat Detection Marketing 139

Anton on Security

NOVEMBER 17, 2022

Now, this is really juicy: “Essential complexity is the complexity inherent in a given situation that cannot be removed from a problem definition, whereas accidental complexity is more fluid and can be resolved with engineering effort.” Metrics and associated data collection? This line alone is magical for the SOC!

Engineering 100

Engineering Software Data collection Architecture 100

The Last Watchdog

JULY 30, 2018

It requires a massive architecture overhaul. To use SIEMs to address today’s increasing list of attacks is akin to attempting to retrofit a minivan with a Ferrari engine on it. Each new cyber attack is more sophisticated than the last, leaving traditional security measures unable to spot the next threat. New approach needed.

CISO 140

CISO Cyber Attacks Data collection Cybersecurity 140

Security Boulevard

NOVEMBER 17, 2022

Now, this is really juicy: “Essential complexity is the complexity inherent in a given situation that cannot be removed from a problem definition, whereas accidental complexity is more fluid and can be resolved with engineering effort.” Metrics and associated data collection? This line alone is magical for the SOC!

Engineering 64

Engineering Software Data collection Architecture 64

eSecurity Planet

MAY 5, 2021

Despite the similarity in name to endpoint detection and response (EDR) technology, MDR providers are more like general managed security service providers (MSSPs) , operating on all layers of an organization’s infrastructure, including the network, endpoints, applications and other IT resources. Secureworks. Focus on collaboration.

Threat Detection 57

Threat Detection Technology Artificial Intelligence Cybersecurity 57

CyberSecurity Insiders

SEPTEMBER 29, 2021

Section 40121: Enhancing Grid Security through Public-Private Partnership – The Secretary (Energy), in consultation with the Secretary of Homeland Security and the heads of other relevant Federal agencies, State regulatory authorities, industry stakeholders, and the Electric Reliability Organization, shall carry out a program— (A) to develop, (..)

Energy and Utilities 108

Energy and Utilities Cybersecurity Technology Architecture 108