If I look at my #SIEM , I realize that <THIS> percentage of running detection rules are written by me or my team (in-house) ...

“GitHub” is the only thing in this headline from the 21st century.

You wouldn’t last an hour in the asylum where they raised me

juror number 4 living their best life

I have good news and bad news: generative AI won't lead to autonomous SOC. 🤖 It'll be useful in some ways - but if you're relying on it to replace humans in security operations, you'll be waiting a long time (forever). Read:

forrester.com/blogs/generati…

Reducing MTTD isn't necessarily a good thing.

If you reduce MTTD but your FP rate is high, you're burning out analysts. Contrast that... raising MTTD by 5 min to reduce FP rate by 50% could be a huge win. Don't trap yourself with meaningless goals.

forrester.com/blogs/an-actua…

Did DEI cause today’s NYC earthquake? No, but it didn’t prevent it, either.

I AM FINE

In 15 years of writing about computer security as a reporter, intel analyst, and whatever-I-am-now, I've learned exactly one thing: Vendors are utterly incapable of simply describing what their product does.

vx-underground My Conspiracy theory is Teams is actually a highly sophisticated network of distributed compute that Microsoft uses somehow : ~25% of active enterprise compute is no joke

I swear, if I get a PR pitch offering an 'expert' opinion on the possibility that a cyberattack was involved in the ship-bridge collision, I'm going to call you out publicly.

I regret to inform you the allegations get worse.
'The company's highest-level engineering executives through the IAPP Program was a legal, technical, and security nightmare...'I can't think of a good argument why this is okay.''

I am thrilled to announce TWO critical pieces of research are now live:
1) The Essential List of SOC Metrics
2) Five Steps to Better Security Operations Metrics

Check it out, let me know what you think!

forrester.com/blogs/an-actua…

are you f-ing kidding me

Full video of Jason Kelce’s legendary retirement press conference:

To the GOAT. Thank you, thank you, thank you.

🎊 Shoutout to Forrester Analyst hackerxbella | Allie Mellen for joining us at BEASTMODE! 🙌 We appreciated your insights on the future of security operations, gen AI, and the importance of always doing whats right for the customer.

Is anyone using D3FEND for detection engineering? If so, how?

It seems more for controls, solutions, and security architecture. I see how D3FEND could be a resource you check from time to time, but overall it seems duplicative to, and less robust than, ATT&CK Data Sources.

Curious about how Generative #AI elevates #security or how #XDR boosts ROI? 🤔 💭

Join our discussion with Forrester Principal Analyst hackerxbella | Allie Mellen and CISO Dave Lewis 🇺🇦: cs.co/6017V0n1l

📅 March 7
⏰ 12:30pm SGT / 3:30pm AEDT

The animation for the Wreck It Ralph movies is getting so realistic