Breakpoint Security Podcast
Breakpoint-'Exploring the depths of Defensive Security'. The defensive side of Security is a world in itself with teams achieving amazing feats that involve excellent engineering practices and smart optimisation for scale. This is not talked about enough in the industry. Join me in the br3akp0int podcast as we reflect on the methods and approaches these smart teams use to solve practical challenges in information security and innovate their way into the future. Who is this meant for? : This podcast is for anyone in InfoSec willing to know more about advances in security techniques. This includes security researchers or professionals, product owners, compliance or cloud, AI/ML, threat intel, SecOps automation, Security Leaders, development teams, pentesters and security practitioners. A bit about me: I am a technical security enthusiast and have been dabbling my hands at both offensive and defensive security. I am passionate about growing security communities and have spoken and trained at various security conferences.
Breakpoint Security Podcast
#S03EP10 SOC - Beyond Automation | Dr. Anton Chuvakin
In this episode of the Breakpoint Security Podcast, we dive into the evolving world of Security Operations Centers (SOC) with Dr. Anton Chuvakin, Security Advisor at the Office of the CISO, Google Cloud.
Key discussion points include:
- Event Correlation: Exploring the automation of correlating security events in real-time and at scale. When should we rely on automation, and where does human expertise still play a vital role?
- Threat Detection & Response: A deep dive into machine learning (ML) and behavior-based analytics for threat detection, including insider threats and the impact of UBA/UEBA on SOC operations.
- Automated Response: Insights & limits of leveraging SOAR platforms to streamline incident response, the boundaries of automated remediation, and real-world use cases like quarantining devices or resetting accounts.
- Threat Hunting: How organizations can fine-tune automation to enhance predictive accuracy and overcome the limitations of AI in identifying potential threats.
Dr. Chuvakin shares technical insights, real-world examples, and practical advice, making this a must-watch for anyone looking to optimize their SOC operations.
Recommended reading/viewing for practitioners:
https://cloud.withgoogle.com/cloudsecurity/podcast/
https://medium.com/anton-on-security/crosspost-a-simple-soar-adoption-maturity-model-dacf61ae857b
https://medium.com/anton-on-security/about-threat-intel-retro-matching-5d94f2cc1991
https://cloud.google.com/blog/topics/threat-intelligence/gemini-for-malware-analysis
https://medium.com/anton-on-security/anton-and-the-great-xdr-debate-part-1-8ed148c3cee4
I would love to hear your suggestions and feedbacks, please DM me. If you liked this episode, please share with others in the community. It always means a lot!
If you’re interested in a security challenge that you’re facing or would like to hear from a specific speaker/team, let me know. Buzz me on Twitter or LinkedIn; checkout my handles below:
- Twitter: @NeeluTripathy
- LinkedIn: neelutripathy
