25 min listen
EP82 Mega-confused by XDR? You Are Not Alone! This XDR Skeptic Clarifies!
EP82 Mega-confused by XDR? You Are Not Alone! This XDR Skeptic Clarifies!
ratings:
Length:
28 minutes
Released:
Sep 5, 2022
Format:
Podcast episode
Description
Guest: Dimitri McKay, Principal Security Strategist @ Splunk Topics: How do you define that "XDR thing" that you are so skeptical about? So within that definition of XDR, you think it’s not so great, why? If you have to argue pro-XDR, what would you say? Two main XDR camps are “XDR as EDR+” and “XDR as SIEM-”, which camp do you think is more right? Are both wrong? What approach do you think is more useful as a lens to understand the potential upsides/downsides of XDR? What about the cloud? "Cloud XDR" seems a bit illogical, but what do you think is the future of D&R in the cloud? Resources: “Anton and The Great XDR Debate, Part 1” “Anton and The Great XDR Debate, Part 2” “Anton and The Great XDR Debate, Part 3” SURGe content on splunk blog “Today, You Really Want a SaaS SIEM!” Red Canary 2022 Threat Detection report Verizon DBIR 2022 report.
Released:
Sep 5, 2022
Format:
Podcast episode
Titles in the series (100)
SIEM Modernization? Is That a Thing?: Guest: , President at , a Fishtech Group company Topics: How do you define “modern” SIEM? Does modern SIEM always imply SaaS SIEM? Is there a future for on-premises SIEM? What are your top 3 root causes for SIEM deployment failure today? Modern... by Cloud Security Podcast by Google