Everand Logo

Welcome to Everand!

  • Discover this podcast and so much more

    Podcasts are free to enjoy without a subscription. We also offer ebooks, audiobooks, and so much more for just $11.99/month.

    EP123 The Good, the Bad, and the Epic of Threat Detection at Scale with Panther

    EP123 The Good, the Bad, and the Epic of Threat Detection at Scale with Panther

    FromCloud Security Podcast by Google

    Start listeningView podcast show

    EP123 The Good, the Bad, and the Epic of Threat Detection at Scale with Panther

    FromCloud Security Podcast by Google

    ratings:
    Length:
    39 minutes
    Released:
    May 29, 2023
    Format:
    Podcast episode

    Description

    Guest: Jack Naglieri, Founder and CEO at Panther Topics: What is good detection, defined at micro-level for a rule or a piece of detection content?  What is good detection, defined at macro-level for a program at a company?  How to reliably produce good detection content at scale? What is a detection content lifecycle that reliably produces good detections at scale? What is the purpose of a SIEM today? Where do you stand on a classic debate on vendor-written vs customer-created detection content? Resources: “Essentialism” book “The 5 AM Club”  book “Good to Great” book  “Why Is Threat Detection Hard” blog “Think Like a Detection Engineer, Pt. 2: Rule Writing” blog “Detection as Code? No, Detection as COOKING!”  blog Open Cybersecurity Schema Framework (OCSF)  
    Released:
    May 29, 2023
    Format:
    Podcast episode

    Titles in the series (100)

    Cloud Security Podcast by Google focuses on security in the cloud, delivering security from the cloud, and all things at the intersection of security and cloud. Of course, we will also cover what we are doing in Google Cloud to help keep our users' data safe and workloads secure. We’re going to do our best to avoid security theater, and cut to the heart of real security questions and issues. Expect us to question threat models and ask if something is done for the data subject’s benefit or just for organizational benefit. We hope you’ll join us if you’re interested in where technology overlaps with process and bumps up against organizational design. We’re hoping to attract listeners who are happy to hear conventional wisdom questioned, and who are curious about what lessons we can and can’t keep as the world moves from on-premises computing to cloud computing.