POPULARITY
30 episodes with Socs
8 episodes with Socs
42 episodes with Socs
7 episodes with Socs
4 episodes with Socs
4 episodes with Socs
4 episodes with Socs
5 episodes with Socs
4 episodes with Socs
Join G Mark Hardy and Carson Zimmerman, the author of '11 Strategies of a World-Class Cybersecurity Operations Center,' in this insightful episode of CISO Tradecraft. Carson shares his career journey, the evolution from the 10 to 11 strategies, and delves into the future needs of Security Operations Centers (SOCs). They discuss critical topics such as the importance of continuous improvement, AI's impact on SOCs, and the value of embracing neurodiversity in cybersecurity teams. Whether you're a seasoned cybersecurity leader or an aspiring professional, get actionable advice on how to enhance and revolutionize your SOC operations. 11 Strategies of a World Class Cybersecurity Operations Center https://www.mitre.org/sites/default/files/2022-04/11-strategies-of-a-world-class-cybersecurity-operations-center.pdf 14 Questions are all you need - https://www.first.org/resources/papers/conf2024/1445-14-Questions-Carson-Zimmerman.pdf Transcripts - https://docs.google.com/document/d/1WVJi9WkxOG7yedQYWSooiqRFjBERd9kV Chapters 00:00 Introduction and Guest Welcome 00:53 Background and Book Discussion 03:33 SOC Challenges and Stagnation 06:10 Managing SOC Alerts and Burnout 09:26 SOC Evolution and Neurodiversity 23:50 Career Progression in Cybersecurity 30:28 Impact of AI on SOC Operations 40:07 Final Thoughts and Conclusion
Click here to send us your ideas and feedback on Blueprint!In this episode of Blueprint, host John Hubbard sits down with James Spiteri from Elastic to explore the transformative power of AI on the SOC. They delve into how advanced AI technologies, such as agentic AI models, MCP protocol, and automation, are reshaping the SOC landscape. Discover how AI enhances SOC efficiency, reduces mundane tasks, and integrates context-aware capabilities. Learn about the real-world applications, from automation in cybersecurity operations to the challenges and promises of large language models. This discussion covers the ethical considerations, potential risks, and the promising future of SOCs powered by AI. Tune in to get inspired and see how AI might revolutionize your cyber defense strategies.Check out John's SOC Training Courses for SOC Analysts and Leaders: SEC450: Blue Team Fundamentals - Security Operations and Analysis LDR551: Building and Leader Security Operations Centers Follow and Connect with John: LinkedIn
In this episode of the Semiconductor Insiders video series, Dan is joined by Chouki Aktouf, CEO and Founder of Defacto Technologies. Dan explores the challenges of building complex SoCs with Chouki, who describes challenges around managing complexity at the front end of the process while staying within PPA requirements and … Read More
Chris and Elecia talk about Murderbot, LLMs (AI), bikes, control algorithms, and fancy math. The website with the ecology jobs is wildlabs.net from 501: inside the Armpit of Giraffe with Meredith Palmer and Akiba.. The algorithm Elecia mentioned was from Patent US7370713B1. The Control Bootcamp YouTube series is a great introduction to control systems beyond PIDs There is also a book from the same folks (with matlab and some python code): Data-Driven Science and Engineering: Machine Learning, Dynamical Systems, and Control. Finding bad AI interactions is too easy. Copilot PR mess that was discussed. Lawyers letting ChatGPT hallucinate precedents. Fake (hallucinated) citations in a high-profile report on children's health. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Congratulations to the giveaway winners!
Erik Bloch, security operations expert and longtime infosec leader, joins the show to talk about the real problems plaguing SOCs and why the industry keeps missing the mark!George K and George A talk to Erik about:- The massive disconnect between what vendors think SOCs do vs. reality - spoiler alert: most founders have never worked in the trenches- Why we're still fighting the same problems from 20 years ago - false positives aren't even 10% of the actual work, so why do we keep obsessing over them?- The real burnout formula: high responsibility + low control + endless busywork that has nothing to do with catching bad guys- Business alignment that actually works: Stop talking about theoretical $48 bazillion losses and start tying security outcomes to actual business growthWhether you're a vendor or an executive leader, there's gold -- and data! -- in this episode. The "AI will solve everything" narrative is misleading, hear what actually works in security operations!------------
Quingentésima sexagésima séptima Noche de Llob@s, hoy con todo este menú: Sun of the Dying, Argion, Unexpectance, Expropiazion, MorphiuM, VÓMITO, Yeska, The Broken Horizon, IMPUREZA, BIG MEMBER, Lemmy, Official Motörhead, BEHEMOTH!, Kissin' Dynamite, Ashes of Ares, INCITE_Heavymetal, Fairyland Official, El Drogas, Ravenblood, @State of crime & science - SOCS y The Who
Today, we're diving into the critical role of network-on-chip (NoC) design in modern system-on-chip (SoC) architectures. Designing efficient interconnects has become a major challenge as SoCs grow more complex, especially with the increasing integration of AI workloads. NoCs now account for a significant portion of silicon area, making it essential to get them right. Michal Siwinski, Chief Marketing Officer at Arteris, will join us in discussing how their FlexNoC tool is revolutionizing NoC design through automation. We'll explore why this is crucial for today's chips, how it addresses the growing demands of AI, and what the future holds for NoC technology.
Elen Fourcade une coach quantique, nous dévoile comment elle accompagne les femmes ayant traversé des épreuves majeures (burnout, maladies, deuils, addictions) pour rétablir l'harmonie avec leur corps et surmonter les blocages émotionnels. À travers son parcours personnel marqué par un combat contre le cancer, Elen nous révèle comment cette maladie est un puissant message du corps, une invitation à se reconnecter avec soi-même et à grandir intérieurement. Ce podcast vous plonge dans l'univers fascinant de la conscience quantique et des transformations profondes. Découvrez comment l'énergie, la méditation, et les "sauts quantiques" peuvent vous guider vers un nouveau niveau de bien-être et de succès personnel. ✨La maladie comme message : comprendre que la maladie n'est pas une fatalité mais une porte vers la guérison. ✨Reconnexion au corps : l'importance de retrouver l'écoute de soi et d'être en phase avec son énergie. ✨Sauts quantiques : comment des changements énergétiques peuvent propulser votre évolution personnelle. ✨Coaching comme guérison : comment l'accompagnement peut être un outil thérapeutique puissant. ✨Retraites transformantes : plongez dans des séjours qui permettent d'explorer votre identité quantique et de briser les chaînes des anciennes identités limitantes. Si tu veux comprendre comment libérer ton potentiel caché et faire un pas vers une vie plus alignée, cet épisode est fait pour toi ! Retrouve Elen sur les réseaux ici : Linkedin : linkedin.com/in/elenfourcadeguzzo Instagram : www.instagram.com/elenfourcade_lifecoach Pour suivre Gaël sur les réseaux sociaux, c'est ici : Linkedin : https://bit.ly/linkedingael Chapitre 00:00 Introduction à la transformation intérieure 03:01 Le corps comme messager sacré 06:05 Reconnexion au corps et à l'énergie 08:54 Parcours personnel et développement professionnel 11:46 Socs quantiques et évolution personnelle 14:54 Création d'un business et accompagnement 18:01 Organisation de retraites et expériences pratiques 26:23 Connexion Énergétique et Projet 29:20 Travail avec les Femmes et Évolution Personnelle 32:30 Retraites Spirituelles et Appels Intérieurs 34:20 Confiance et Guidance dans la Vie 36:10 Lâcher Prise et Auto-Limitation 39:10 L'Héritage et le Message Personnel 41:10 Recommandation d'Invité et Réseautage 42:35 Message de Clôture et Reconnexion à Soi
Komathi Sundaram spoke with us about her enthusiasm for tests and test automation. We talked about the different joys of testing vs. development, setting up CI servers, and different kinds of tests including unit, hardware-in-the-loop, and simulation. It may sound dry but we had a lot of fun. Komathi's site is TheKomSea.com which hosts her blog as well as contact info. She will be speaking on automated hardware in the loop test processes at the Embedded Online Conference. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck!
Today on the Social-Engineer Podcast: The Security Awareness Series, Chris is joined by Travis Farral. Travis has been working in information security since the 90s at places such as Nokia, ExxonMobil, and XTO Energy. He is currently VP & CISO at Archaea Energy, a bp owned, renewable natural gas company based in Houston, Texas. He has spoken at events around world on topics such as Cyber Threat Intelligence, MITRE ATT&CK, and Incident Response. Notable activities during his career include everything from programming logic controllers, building and leading SOCs, driving forklifts, standing up cybersecurity teams, developing threat intelligence programs, and handling responses to incidents, among many other things over the last few decades. [April 21, 2025] 00:00 - Intro 00:18 - Intro Links: - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 02:08 - Travis Farral Intro 02:58 - A Different Path than Today 05:25 - Healthy Hacking 08:08 - Anything Can Be Weaponized 10:54 - Questionable Behavior 14:31 - Smash That Report Button!!! 18:58 - Improving Our Odds 21:00 - You Have to Keep It Simple 22:25 - Letters to a Young CISO 24:20 - Find Travis Farral online - LinkedIn: linkedin.com/in/travisfarral 25:01 - Mentors - Shawn Edwards - Jay Leek 27:02 - Book Recommendations - R. E. Lee: A Biography - Douglas Southall Freeman 29:34 - Wrap Up & Outro - www.social-engineer.com - www.innocentlivesfoundation.org
Dan is joined by Marc Evans, director of business development and technology at Andes. Marc has over twenty years of experience in the use of CPU, DSP, and Specialized IP in SoCs from his prior positions at Lattice Semiconductor, Ceva, and Tensilica. During his early career, Marc was a processor architect, making significant contributions… Read More
At the end of this week's show, Elecia reads a Winnie the Pooh poem as Cookie Monster death metal. Before that, Chris and Elecia chat about mental health, journaling, personal projects, and listener questions. Please sign up for the Nordic Giveaway! You can also sign up for the Embedded newsletter. Maybe now with job postings? Elecia's journaling notebook is this one on JetPens (which is where she gets her nice pens and some of her stickers and washi tape). From discussing some listener messages, we mentioned: Matt Keeter's talk on debuggability in production where you don't have access to the system that is faulting (video and slides) Letter boards (in the Adirondacks), see those in action here Wokwi simulator is a great place to get more embedded experience without buying all the kits. Christopher has said that there will not, definitely not, under any circumstances, be a whole death metal album of Winnie the Pooh poems. Elecia is practicing anyway. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck!
In this videocast, KuppingerCole Analysts' Senior Analyst Warwick Ashford is joined by Prakash Sinha, Senior Director and Technology Evangelist at Radware, to explore how security teams can drive Mean Time To Resolution (MTTR) close to zero. As AI-powered attacks increase in sophistication and frequency, security operations centers (SOCs) must evolve by leveraging automation and AI-driven incident response. Prakash shares insights on how AI can enhance threat detection, automate remediation, and reduce analyst workloads while maintaining governance and accountability. Discover practical steps for implementing AI-assisted security and the key success factors for modernizing SOCs in the face of an ever-changing threat landscape.
In this videocast, KuppingerCole Analysts' Senior Analyst Warwick Ashford is joined by Prakash Sinha, Senior Director and Technology Evangelist at Radware, to explore how security teams can drive Mean Time To Resolution (MTTR) close to zero. As AI-powered attacks increase in sophistication and frequency, security operations centers (SOCs) must evolve by leveraging automation and AI-driven incident response. Prakash shares insights on how AI can enhance threat detection, automate remediation, and reduce analyst workloads while maintaining governance and accountability. Discover practical steps for implementing AI-assisted security and the key success factors for modernizing SOCs in the face of an ever-changing threat landscape.
How did China surpass Japan as the world's leading auto exporter? Is Japan poised for victory in the AI Chip War? Why are Data Centers being built near Nuclear Power Plants?SHOW NOTESPoland's adjusted income to overtake Japan's by 2026Rapidus teams up with Singapore's Quest Global to produce AI chipsBattery materials plant in Finland starts construction; jv with China's EaspringU.S. blacklists over 50 Chinese companies in bid to curb Beijing's AI, chip capabilitiesSoftBank strengthens AI strategy by acquiring data center semiconductor company Ampere Computing for approximately 970 billion yen in cashOpenAI close to finalizing $40 billion SoftBank-led fundingMicrosoft cancels up to 2GW of data center projects, says TD CowenDeepSeek-V3 now runs at 20 tokens per second on Mac Studio, and that's a nightmare for OpenAIChina's SiCarrier emerges as challenger to ASML, other chip tool titansASML will open Beijing facility despite US sanctions on ChinaToyota delays electric vehicle battery plant due to weak demandChina EV giant BYD soars after 5-minute charging platform unveiledHonda and Subaru team up with semiconductor companies to develop proprietary SoCs for AI autonomous driving
Continuing its global expansion plan, Integrity360 has acquired leading cyber security specialist Holiseum headquartered in Paris, France. The terms of the transaction were not disclosed. The acquisition will enable Integrity360 to accelerate its growth in France and continental Europe, and significantly provide a new and exciting services practice focused on Operational Technology ("OT") and Internet of Things ("IoT") technologies which complement Integrity360's existing service practices. Those include cyber risk and assurance, cyber security testing, incident response, infrastructure, Microsoft cyber, payments compliance, and a highly comprehensive range of cyber security managed services including managed detection and response ("MDR") solutions. Holiseum will continue to operate from its existing three facilities in France but with the benefit of the full resources and capability of the wider Integrity360 business. Holiseum, founded in 2018, is a highly respected and well-established cybersecurity consultancy that specialises in critical and industrial infrastructure. It serves approx. 80 customers throughout France and selected international locations from facilities in Paris and Nimes including organisations operating in the energy, infrastructure, manufacturing, transport and financial sectors. In particular, Holiseum is an expert in OT technology and has helped many global corporate and infrastructure organisations secure and evolve their OT environment and associated IT estates. Holiseum's reputation is underpinned by several security accreditations from ANSSI - the National Cybersecurity Agency of France - including PASSI (cybersecurity audit services) and PACS (cybersecurity support and consulting) - where Holiseum is one of the first three certified organisations in France. Holiseum's portfolio of services include audit, training, investigation and a full suite of OT consulting solutions. Securing critical infrastructures is a high priority for many governments and corporate organisations across the globe due to the alarming rise in attacks on industrial and energy infrastructure. Leading industry analyst Gartner has commented that such attacks could result in the weaponisation of OT environments to seriously harm human life. Despite the tightening of the regulatory environment with the introduction of cyber security frameworks including NIS2 (Network and Information Security 2) and DORA (Digital Operational Resilience Act) the challenge of continuously securing critical infrastructure remains acute. Holiseum will form a major new practice within Integrity360 dedicated to the mission of aiding, protecting and supporting both government and industrial infrastructure. The existing Holiseum team of 32 will be rapidly expanded in France and across all other Integrity360 markets in support of this mission. In addition, Holiseum's headquarters in Paris will form a new regional hub for the group from which it will deliver the full suite of Integrity360 services, and during 2025 an additional Paris based SOC (Security Operations Centre) will be launched to join the existing network of six SOCs across EMEA (Dublin, Stockholm, Naples, Sofia, Madrid and Cape Town). The SOC teams deliver a wide-ranging set of managed services for customers including EDR, XDR and MDR (Endpoint Detection and Response, Extended Detection and Response, and Managed Detection and Response). Integrity360's innovative range of services have been recognised on multiple occasions by Gartner, namely as a Representative Vendor in the Gartner market guide for Managed Detection and Response services. The addition of Holiseum brings group revenues to over €160m and a dedicated cybersecurity team of over 700 employees. Further innovation and demand for its services across the EMEA region will expand group revenues in 2025 across all territories. Ian Brown, Executive Chairman at Integrity360 commented: "We are very excited to be welcoming the team from Hol...
9 años después volvemos a recibir al Piñas de Malaputa Rock y Alén de Ciclonautas. Los dos llegan a la Sala Acapulco - conciertos - este próximo sábado en una gira conjunta que sirve para presentar el segundo trabajo de Malaputa y adelantar cosas del cuarto de Ciclonautas. De todo ello y lo que surja, charlaremos un buen ratiko. Y además... Aneuma, Vendaval Fest , LÏBRE, @State of crime & science - SOCS, November, Sartenazo Cerebral, CSA La Kuadra, El Drogas, Ciudad Olvido, Jolly Joker, Puraposse, Machine Head, MALVADA, TRICK OR TREAT, Rienda Suelta, Dätcha Mandala, LocoMuerte y Jhonny Cash.
Professor Cindy Harnett spoke to us about new and different sensors and actuators, primarily designed for soft robotics and fabricated with relatively low cost materials. Cindy is a professor of electrical and computer engineering at the University of Louisville where she runs the Harnett Lab. The papers we discussed are here. You can find a longer list of Cindy's papers on Google Scholar. The video of the SESAME actuator is especially interesting. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck!
Suresh Vasudevan, CEO of Sysdig, discusses the evolving challenges of cloud security incident response and the need for new approaches to mitigate organizational risk.Topics Include:Cybersecurity regulations mandate incident response reporting.Challenges of cloud breach detection and response.Complex cloud attack patterns: reconnaissance, lateral movement, exploit.Rapid exploitation - minutes vs. days for on-prem.Importance of runtime, identity, and control plane monitoring.Limitations of EDR and SIEM tools for cloud.Coordinated incident response across security, DevOps, executives.Criticality of pre-defined incident response plans.Increased CISO personal liability risk and mitigation.Documenting security team's diligence to demonstrate due care.Establishing strong partnerships with legal and audit teams.Covering defensive steps in internal communications.Sysdig's cloud-native security approach and Falco project.Balancing prevention, detection, and response capabilities.Integrating security tooling with customer workflows and SOCs.Providing 24/7 monitoring and rapid response services.Correlating workload, identity, and control plane activities.Detecting unusual reconnaissance and lateral movement behaviors.Daisy-chaining events to identify potential compromise chains.Tracking historical identity activity patterns for anomaly detection.Aligning security with business impact assessment and reporting.Adapting SOC team skills for cloud-native environments.Resource and disruption cost concerns for cloud agents.Importance of "do no harm" philosophy for response.Enhancing existing security data sources with cloud context.Challenges of post-incident forensics vs. real-time response.Bridging security, DevOps, and executive domains.Establishing pre-approved incident response stakeholder roles.Maintaining documentation to demonstrate proper investigation.Evolving CISO role and personal liability considerations.Proactive management of cyber risk at board level.Developing strong general counsel and audit relationships.Transparency in internal communications to avoid discovery risks.Security teams as business partners, not just technicians.Sysdig's cloud security expertise and open-source contributions.Participants:· Suresh Vasudevan – CEO, SysdigSee how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon/isv/
Elecia and Chris talk with each other about the state of Chris' mind, what makes an embedded developer stand out, “LEGO block” based design, unit tests, and astronomy. Whew! Elecia was recently on the Changelog podcast, talking about the world of embedded systems. Chris has been working with Micropython (we talked with Damien George about Micropython on episode 456). He's using a Pyboard to start, but is looking to move on to this board from Sparkfun. Wikipedia has a nice reference on what the pulse-per-second signal is all about. Elecia talked about her experience using CFFI to drive unit tests. She also talked about some facts from Information is Beautiful. Chris' telescope is the ZWO Seestar S50. There's also a smaller Seestar S30 now which has a wider field-of-view. Title reference (Chris and Elecia both thoroughly enjoyed The Good Place, the TV show this is taken from.) Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck! Here's one of the astrophotos Chris has taken: The Horsehead and Flame nebulae in Orion taken from a Seestar S50
With cyber threats growing in sophistication and scale, organisations must rethink their strategies to safeguard digital assets and operational continuity. Security Operations Centers (SOCs) stand at the forefront of this effort, acting as centralised hubs where cybersecurity professionals monitor, manage, and mitigate threats. The rise in cyber threats – estimated to have grown by 25% annually over the past half-decade – has amplified the importance of SOCs. In this podcast hosted by Merle Maigre, Head of Cybersecurity at e-Governance Academy, Margus Vaino and Martin Paas from Telia discuss the evolution, challenges, and opportunities surrounding SOCs – from the point of view of a major telecommunications player. Acknowledging the rising importance of SOCs is only the beginning: the increasing complexity of cyber threats, and the essential steps required to build and sustain effective cybersecurity infrastructures, are all part of the roadmap to effective cyber defence.
The cast & creatives from the Tony Award winning musical “The Outsiders” join us to perform a song and discuss the beloved story that defined a generation, reimagined as a groundbreaking new musical. In Tulsa, Oklahoma, 1967, Ponyboy Curtis, his best friend Johnny Cade, and their greaser family of ‘Outsiders' battle with their affluent rivals, the Socs. “The Outsiders” navigates the complexities of self-discovery as the Greasers dream about who they want to become in a world that may never accept them. With a dynamic original score, “The Outsiders” is a story of friendship, family, belonging, and the realization that there is still “lots of good in the world.” Visit http://youtube.com/TalksAtGoogle/ to watch the video.
HAPPY FRIDAY DIVAS! we're coming in hot with a bonus episode to celebrate our dear, dear friend John Patrick Collins-- Riding high from his Broadway debut in the smash hit “The Outsiders”. Naturally, the Ladies were there to cheer him on, and then sat down to talk all things Greasers, Socs, and more. We love you Johnny boy, and we're beyond excited to have you back on the pod.Divas, check out his earlier episode in Season 1 for more info on his original play, “It's Not What It Looks Like”."The Ladies Who Brunch" New Episodes Every WednesdayInstagram/Tik Tok: @theladieswhobrunchpod@jakewaford@sammyschechter
Guest: Amine Besson, Tech Lead on Detection Engineering, Behemoth Cyberdefence Topics: What is your best advice on detection engineering to organizations who don't want to engineer anything in security? What is the state of art when it comes to SOC ? Who is doing well? What on Earth is a fusion center? Why classic “tiered SOCs” fall flat when dealing with modern threats? Let's focus on a correct definition of detection as code. Can you provide yours? Detection x response engineering - is there a thing called “response engineering”? Should there be? What are your lessons learned to fuse intel, detections, and hunting ops? What is this SIEMless yet SOARful detection architecture? What's next with OpenTIDE 2.0? Resources: Guide your SOC Leaders to More Engineering Wisdom for Detection (Part 9) and other parts linked there Hack.lu 2023: TIDeMEC : A Detection Engineering Platform Homegrown At The EC video OpenTIDE · GitLab OpenTIDE 1.0 Release blog SpectreOps blog series ‘on detection' Does your SOC have NOC DNA? presentation Kill SOC Toil, Do SOC Eng blog (tame version) The original ASO paper (2021, still epic!) Behind the Scenes with Red Canary's Detection Engineering Team The DFIR Report – Real Intrusions by Real Attackers, The Truth Behind the Intrusion Site Reliability Engineering (SRE) | Google Cloud
In this episode of the mnemonic security podcast, Robby is joined by Scott Piper from Wiz and Håkon Sørum from O3 Cyber to talk cloud security. They cover the evolution of cloud security products since Amazon's release of S3 and EC2 in 2006 and how the market has matured into the CNAPP we know today. They chime in on most of the buzzwords associated with CNAPP, including Cloud Security Posture Management (CSPM), Cloud Workload Protection Platform (CWPP), Cloud Infrastructure Entitlement Management (CIEM), and Cloud Detection and Response (CDR), as well as other key areas of CNAPP such as vulnerability scanning, "shift-left" security, cloud data security, and compliance. They explain the definition and challenges of "cloud-native attacks" and misconfigurations and discuss whether third-party SOCs can add context and enhance detection capabilities.
Nikolaus Correll spoke with us about robots, teaching robotics, and writing books about robots. Nikolaus is a Professor of Computer Science at the University of Colorado, see his lab website (or his Wikipedia page). We discussed Nikolaus' Introduction to Robotics with Webots Specialization Coursera course (or YouTube Playlist). These go along with his Introduction to Autonomous Robots (which can be compiled from source from github). Masters of Computer Science online via University of Colorado and Georgia Tech. While the Arcbotics Sparki is no longer in production, Nikolaus also mentioned the Amazon Racer. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck!
In this episode of Out of the Woods: The Threat Hunting Podcast, Scott Poley sits down with Brian Hill, a cybersecurity leader with a rich background in law enforcement, military service, and corporate security. Brian shares his journey from major crimes detective and forensics expert to building and managing Security Operations Centers (SOCs) at organizations like Arctic Wolf and Black Cloak. The discussion highlights challenges in scaling SOCs, the importance of balancing specialized expertise with cross-functional training, and unique threats faced by high-profile individuals, such as SIM swapping and personal device vulnerabilities. Brian also explores broader trends like artificial intelligence and deepfake technology, emphasizing the need for education and proactive measures to stay ahead of evolving cyber threats. *Connect with Brian Hill: https://www.linkedin.com/in/brian-hill-776b50100/ ---- Stay in Touch! Twitter: https://twitter.com/Intel471Inc LinkedIn: https://www.linkedin.com/company/intel-471/ YouTube: https://www.youtube.com/channel/UCIL4ElcM6oLd3n36hM4_wkg Discord: https://discord.gg/DR4mcW4zBr Facebook: https://www.facebook.com/Intel471Inc/
Guests Caleb Connolly | Pablo Correa Gómez Panelist Richard Littauer Show Notes In this episode of Sustain, host Richard Littauer is joined by guests Pablo Correa Gómez and Caleb Connolly to explore the development and sustainability of postmarketOS, an open-source Linux distribution designed to extend the life of mobile devices. The team dives into the project's mission, governance, and the community-driven nature of its work. They discuss the challenges related to funding, primarily through grants and Open Collective donations, and the significance of upstreaming Linux kernel support to collaborate with other communities like Alpine Linux. The conversation also highlights the growth of the postmarketOS community, encouraging contributions from both technical and non-technical supporters, and the importance of comprehensive documentation. Additionally, issues of privacy, telemetry, and user support are examined, alongside the steps towards making postmarketOS more professional and economically sustainable. Press download now to hear more! [00:01:30] Pablo explains postmarketOS and its mission to empower people to have full control over their devices and promote sustainability. [00:02:12] Caleb talks about the governance of postmarketOS that started with a few contributors working on a package repository on top of Alpine Linux and overtime more maintainers were added. [00:03:59] There's a discussion on the structure of the team, how the community around hardware components forms sub-communities bases on common SOCs, and the focus on improving tooling and the ecosystem rather than building a product for end users. [00:06:29] Richard discusses the massive, refurbished phone market and asks about how postmarketOS fits into this ecosystem. Caleb shares their experience working on the OnePlus 6 phone and explains the technical process of making the device work on upstream Linux and the challenges of hardware enablement. [00:10:05] Pablo explains that the project is largely funded by volunteer work and Caleb describes the challenges in deciding which devices to prioritize for hardware enablement and how all hardware work so far has been done by volunteers. [00:14:09] On the importance of upstreaming, Pablo explains that postmarketOS works hard to contribute back to the Linux ecosystem rather that maintaining device-specific patches and postmarketOS is downstream to Alpine Linux but contributes much of its work upstream to maintain sustainability. [00:20:09] Richard asks about how the project builds shared context and onboards new developers and Pablo and Caleb explain how the project relies on its wiki page to provide extensive documentation and how the pmbootstrap tool makes it easier for new contributors to get started with porting new devices to postmarketOS. [00:25:01] Richard asks about telemetry and how the team tracks their impact. [00:25:39] Pablo talks about how they receive community feedback through events like FOSDEM and have seen an increase in donations, social media engagement, and community members. [00:28:39] Caleb reflects on the pros and cons of collecting telemetry, which could help guide development but may also create unwanted challenges by focusing too heavily on specific devices. [00:31:30] What are Pablo and Caleb most excited about for the next year? Pablo is excited about professionalizing the project, starting to pay contributors, and scaling the project's growth sustainably, and Caleb jokes about looking forward to the “pre-market OS.” Quotes [00:12:00] “We are trying to grow organically, bit by bit, and be able to pay people to do core things where volunteer work doesn't reach.” [00:15:06] “In the environment we live in, where you have X amount of code per update, it is totally unsustainable.” [00:16:18] “As a distro, we predominately put together the pieces that other people give us.” [00:19:13] “Downstream patches allow to experiment, but long term are a burden. That's the same for every project.” [00:19:22] “The sustainability goes beyond reducing waste and also goes into the social ecosystem and how we maintain projects.” [00:30:33] “We know we are not ready for end users, but we need to build the structure and economic support.” Spotlight [00:32:32] Richard's spotlight is DOSBox. [00:33:03] Pablo's spotlight is FOSDEM and the FOSDEM team. [00:33:57] Caleb's spotlight is processing.org. Links SustainOSS (https://sustainoss.org/) podcast@sustainoss.org (mailto:podcast@sustainoss.org) richard@sustainoss.org (mailto:richard@sustainoss.org) SustainOSS Discourse (https://discourse.sustainoss.org/) SustainOSS Mastodon (https://mastodon.social/tags/sustainoss) Open Collective-SustainOSS (Contribute) (https://opencollective.com/sustainoss) Richard Littauer Socials (https://www.burntfen.com/2023-05-30/socials) Caleb Connolly Website (https://connolly.tech/) Caleb Connolly-treehouse (https://social.treehouse.systems/@cas) Pablo Correa Gómez Website (https://postmarketos.org/core-contributors/#pablo-correa-gomez-pabloyoyoista) Pablo Correa Gómez LinkedIn (https://www.linkedin.com/in/pablo-correa-gomez/) postmarketOS (https://postmarketos.org/) postmarketOS (Open Collective Contribute) (https://opencollective.com/postmarketos) Gnome Shell & Mutter (https://blogs.gnome.org/shell-dev/2022/09/09/gnome-shell-on-mobile-an-update/) postmarketOS Devices (https://wiki.postmarketos.org/wiki/Devices) Sustain Podcast-Episode 195: FOSSY 2023 with Denver Gingerich (https://podcast.sustainoss.org/195) Software Freedom Conservancy (https://sfconservancy.org/) FOSSY 2025:July 31-August 1 (https://2025.fossy.us/) linaro (https://www.linaro.org/) postmarketOS Wiki (https://wiki.postmarketos.org/wiki/Devices) pmbootstrap (https://wiki.postmarketos.org/wiki/Pmbootstrap) compost.party (https://compost.party/) pmbootstrap v3 by Caleb Connolly (https://connolly.tech/posts/2024_06_15-pmbootstrap-v3/) DOSBox (https://www.dosbox.com/) FOSDEM 2025 (https://fosdem.org/2025/) Processing (https://processing.org/) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr Peachtree Sound (https://www.peachtreesound.com/) Special Guests: Caleb Connolly and Pablo Correa Gomez.
Qualcomm takes the wheel
In this episode, we talk with Dr. Elizabeth Kiracofe, a dermatologist in the Chicago area who has worked closely for many years with the Skin of Color Society (SOCS)—the world's leading professional dermatologic organization dedicated to advancing health equity and promoting diversity and inclusion in dermatology. Dr. Kiracofe provides an insightful overview of SOCS, introduces their latest initiative and volunteer opportunity, "My Best Winter Skin", and discusses ways for students to get involved with SOCS. She also highlights the importance of building meaningful connections and relationships in dermatology, whether with patients, colleagues, or mentors. We hope you enjoy! Join The Skin of Color Society - here! Learn more about the "My Best Winter Skin" initiative - here! Recommended research article: A model in dermatology for long-distance mentoring (PMID: 23267719) --- Dr. Kiracofe: @drkiracofemd SOCS: @skinofcolorsociety DIGA: @derminterest Today's Host, Austin: @austin_black --- For questions, comments, or future episode suggestions, please reach out to us via email at derminterestpod@gmail.com --- Music: District Four by Kevin MacLeod Link: https://incompetech.filmmusic.io/song/3662-district-four License: https://filmmusic.io/standard-license
How does the tone from the top influence fraud investigations, organizational culture, security training, and technology upgrades? Scot Walker, PCI, Manish Mehta, and John Rodriguez join this episode of the SM Highlights podcast to talk through how proactive relationship-building and partnerships can drive tactical and strategic success. Additional Resources Join the ASIS International Investigations Community here: https://community.asisonline.org/subjectareahome?CommunityKey=e3a5949e-d103-40a3-80f9-38f8476100b1 Get resources from the Society for Human Resource Management (SHRM) on investigations here: https://www.shrm.org/topics-tools/tools/how-to-guides/how-to-conduct-investigation To learn more about security operations centers (SOCs), check out Security Management's coverage from September: https://www.asisonline.org/security-management-magazine/articles/2024/09/soc/ Read Manish Mehta's take on modernizing SOCs in his article: https://www.asisonline.org/security-management-magazine/articles/2024/09/soc/modernizing-socs/ More interested in security culture and how it affects leadership? Read more here: https://www.asisonline.org/security-management-magazine/articles/2024/10/culture/ Hear more from John Rodriguez about how security leaders can leverage and influence culture in his article: https://www.asisonline.org/security-management-magazine/articles/2024/10/culture/culture-security-differentiator/
Unlocking SOC Excellence: Master the SOC Capability Maturity Model Join host G Mark Hardy in this compelling episode of CISO Tradecraft as he explores the revolutionary SOC Capability Maturity Model (SOC CMM) authored by Rob van Os. This episode is a must-watch for CISOs, aspiring CISOs, and cybersecurity professionals aiming to optimize their Security Operations Center (SOC). Learn how to measure, evaluate, and enhance your SOC's maturity across key domains including Business, People, Process, Technology, and Services. Gain insights into leveraging radar charts for visualizing SOC capabilities and hear case studies such as a mid-sized financial company's remarkable improvements. Discover why understanding your SOC's strengths and weaknesses and conducting risk-based improvement planning are crucial. Don't miss out—elevate your cyber resilience today, subscribe, and share with your network to set your SOC on the path to excellence! References: SOC-CMM - https://www.soc-cmm.com/products/soc-cmm/ Robert van Os - https://www.linkedin.com/in/socadvisor/ Transcripts: https://docs.google.com/document/d/1Fk6_t9FMyYXDF-7EfgpX_ZjLc0iPAgfN Chapters 00:12 Introduction to CISO Tradecraft and SOCs 01:20 Understanding SOC CMM: A Game-Changing Tool 02:29 Evaluating SOC Maturity and Capability 06:04 Benefits and Implementation of SOC CMM 07:56 Understanding SOC Assessments 08:55 Deep Dive into SOC CMM Domains 12:42 Benefits and Flexibility of SOC CMM 14:40 Real-World Application and Conclusion
No hay dudas que la empresa Taiwanesa Mediatek, esta avanzando cada vez más en los SOCs de gama alta, a valores más económicos, los cuales se contra pone directamente con el líder Qualcomm, y esto despierta el interés incluso de Samsung para sus próximos buques insignias, ademas; El Departamento de Justicia podría obligar a Google a desmembrarse; HBO afirma que Peter Todd es el creador de bitcoin. Y la respuesta del experto en cifrado es: "por supuesto que no soy Satoshi" y por supuesto esperamos sus comentarios... #Ciberseguridad – Check Point Software y su CPX Argentina 2024 https://infosertecla.com/2024/10/09/ciberseguridad-check-point-software-y-su-cpx-argentina-2024/ El Departamento de Justicia podría obligar a Google a desmembrarse https://www.engadget.com/big-tech/the-justice-department-could-force-google-to-break-itself-up-123041161.html Starlink comenzó a cobrar un recargo "por congestión" de la red a los usuarios de zonas con alta demanda https://www.starlink.com/legal/documents/DOC-1239-99570-81 Mediatek anuncia oficialmente el Dimensity 9400 https://www.mediatek.com/products/smartphones-2/mediatek-dimensity-9400 HBO afirma que Peter Todd es el creador de bitcoin. Y la respuesta del experto en cifrado es: "por supuesto que no soy Satoshi" https://www.coindesk.com/business/2024/10/08/former-bitcoin-dev-peter-todd-denies-hes-satoshi-hours-before-hbo-documentary-airs/ Video del día en las redes https://www.instagram.com/reel/DA55OXDNn92/ https://www.instagram.com/reel/DA6aCbuuNLi/ ESPERAMOS TUS COMENTARIOS...
A painful reminder this week, to all who needed it, that we do still support Spurs - and Spurs, from time to time, do still do very Spursy things. We hope you find this podcast slightly less painful, although make no guarantees, as an absent Elio leaves a 3-man team of Dags, Socs and Dave to cry/troll their respective ways through a breakdown of Tottenham's latest box office capitulation. There's also some chat about a few exciting outings from youngsters in the Europa League and various bizarre bits and pieces. Episode brought to you by Pundit Games - the original football trivia board game - www.punditgames.co.uk - use code PLUSDAVE at checkout for an exclusive 20% discount.
Lenovo Innovation World 2024 was held in Berlin on September 4th—5th. During this event, the company announced a slew of Copilot+ PCs powered by the new Intel Core Ultra 400v, AMD Ryzen AI 300, and Qualcomm Snapdragon X Plus (8-core) SoCs. In this episode, I talk to Olivier Blanchard, Research Director, Futurum Research, about the various SoCs, their strengths and weaknesses, the need for OEMs to position them well, specifically what Lenovo should do to maintain its formidable market leadership, and finally, key takeaways from the event. Also, check out the reviews of these Copilot+ PCs powered by Snapdragon XElite SOC Lenovo Slim7x - https://bit.ly/3WK9W4n Samsung Galaxy Book4 Edge - https://bit.ly/3XJSGLN
Spurs are back to something close to their brilliant Angeball best, as the home side came back from a shock early goal to sail to a convincing 3-1 win, in one of our most encouraging performances in recent times. Dags, Elio and Socs form a Daveless Plus Dave squad this week to look back gleefully on all the highlights, before turning their attention to games coming thick and fast in the form of our Europa League opener vs Qarabag and a trip to Old Trafford at the weekend. Episode brought to you by Pundit Games - the original football trivia board game - www.punditgames.co.uk - use code PLUSDAVE at checkout for an exclusive 20% discount.
A streamlined Plus Dave Team brings you this week's episode - as the undisputed star attraction of the regular team (being of course the host, Dags) takes the week off, just in time to avoid having to feign positivity about yet another home defeat to Arsenal. This leaves Elio, once again, taking over the hosting microphone and doing an excellent job as he is joined by Socs and Dave. It is perhaps fitting therefore that so much of the conversation centres around the notion of regulars potentially being replaced by their talented understudies waiting in the wings at Spurs. Wings themselves continue to be a problem with Spurs once again failing to provide those cutting edges and another set piece goal was eventually our undoing. With previews of Coventry (which has since ended in an extremely comfortable, never-in-doubt 2-1 triumph) and Brentford to follow what is a great summary of the game, the status quo at Spurs and everything in between, we hope you enjoy this slightly punchier episode. Episode brought to you by Pundit Games - the original football trivia board game - www.punditgames.co.uk - use code PLUSDAVE at checkout for an exclusive 20% discount.
It's quiz time as the PDP turns 3! Join us in a feature length birthday special, where on top of previewing Sundays big game, Dave and Dags put the two cousins to the test in a North London Derby themed, 4-round bumper quiz extravaganza. It's Elio vs Socs for the ultimate glory - we have piles of questions, including many from some of you listeners, we have the spinning wheel of mayhem and last minute drama in a quiz that honours the Plus Dave tradition of being overly long, complex and poorly prepared/executed. Who will come out on top? Listen along to see how you would have done - to skip right to the quiz, go to 25:30. Episode brought to you by Pundit Games - the original football trivia board game - www.punditgames.co.uk - use code PLUSDAVE at checkout for an exclusive 20% discount.
For the first time, an AMD executive joins our podcast. In this episode, I sit down with Salil Raje, SVP and GM of Adaptive and Embedded Computing Group at AMD. As a pioneer in the FPGA market, Salil provides unique insights into the industry's current landscape and AMD's strategic direction. We delve into the status of Xilinx's integration into AMD after two years of acquisition, the challenges and opportunities of Edge computing/AI, and how AMD's upcoming Versal 2 platform aims to revolutionize this space.
Spurs have their first win of the season and Dags, Socs and Dave are here to bask in its glory, while Elio - birthday-buddy of big Ange Postecoglou - gets the week off to celebrate turning 30 something... Hear our thoughts on 4 lovely goals and a dominant 4-0 victory to open our home account with a bang, including our analysis of THAT assist by Micky, Spurs hopefully figuring out set pieces, intense Angeball pressing and some completely unnecessary and extensive semantics around the exact criteria of a thunderbastard. We also bring you our usual preview of Spurs' upcoming opponents - this time a Newcastle side that both battered and were battered by Spurs last season. And finally we have our weekly trivia teaser brought to you by our official affiliate partner, Pundit. See if you can outsmart Socs and Dave! Episode brought to you by Pundit Games - the original football trivia board game - www.punditgames.co.uk - use code PLUSDAVE at checkout for an exclusive 20% discount.
In this week's Top 5 Threat Hunting Headlines, Scott and Tom discuss top cybersecurity threats, including Kaspersky's Tusk InfoStealer campaign, a cloud extortion campaign exploiting AWS environments, APT41's advanced tactics against a Taiwanese research institute, and the Banshee InfoStealer targeting macOS. They also explore the impact of AI on cybersecurity, emphasizing the need for SOCs to evolve with new talent and strategies to address emerging threats. The episode underscores the importance of staying vigilant and adapting to the rapidly changing threat landscape. Top 5 Threat Hunting Headlines - 19 Aug 2024 1. Secure List | Tusk Campaign Uses Infostealers and Clippers for Financial Gain https://securelist.com/tusk-infostealers-campaign/113367/ 2. Unit 42 | Leaked Environment Variables Allow Large-Scale Extortion Operation of Cloud Environments https://unit42.paloaltonetworks.com/large-scale-cloud-extortion-operation/ 3. Cisco Talos Blog | APT41 Likely Compromised Taiwanese Government-Affiliated Research Institute with ShadowPad and Cobalt Strike https://blog.talosintelligence.com/chinese-hacking-group-apt41-compromised-taiwanese-government-affiliated-research-institute-with-shadowpad-and-cobaltstrike-2/?&web_view=true 4. Elastic Security Labs | Beyond the Wail: Deconstructing the BANSHEE Infostealer https://www.elastic.co/security-labs/beyond-the-wail 5. Help Net Security | 74% of IT Professionals Worry That AI Tools Will Replace Them https://www.helpnetsecurity.com/2024/08/15/it-professionals-ai-worry/?web_view=true ----- Follow Us! Twitter: https://twitter.com/CyborgSecInc LinkedIn: https://www.linkedin.com/company/cyborg-security/ YouTube: https://www.youtube.com/cyborgsecurity Discord: https://discord.gg/DR4mcW4zBr TikTok: https://www.tiktok.com/@cyborgsecinc
What Industry Leading ISPs are Saying about Upping their Security Game, Podcast with Radware's Travis Volk, Podcast, Automation is driving down the cost of these attacks “Automation is driving down the cost of these attacks,” says Travis Volk, senior vice president of global service providers of Radware. “That means that the bad actors can cover smaller to medium businesses. We're having to, as a community, try to alleviate the burden into a much larger addressable market.” After traveling across four continents and visiting with over 75 unique ISPs, Travis Volk walked away with some interesting perspectives from industry leaders who are operating at the forefront of cybersecurity. “Hackers are also leveraging AI for widespread vulnerability assessment. Imagine they can sweep huge address ranges very quickly and use AI to accelerate code revision like bot variants and script modifications. And eventually, you get into this LMM prompt-assisted campaigns where we have some research being done in the universities that show 85% improvement in penetration testing with, basic prompting and retries through LLM support.” In this podcast, we discuss the top cyber threats they are facing Their challenges dealing with AI-empowered hackers who are exposing vulnerabilities a magnitude faster and moving down market to zero in on small businesses How they are coping with SOCs that are running exhausted Why layer 7 visibility, attack detection, and remediation are becoming more important Where they see blind spots in defense of distributed deployments What scaling modern protections have to do with the one aspiration they all share “I think we need to be mentally to evolve as well. Layered protections allow better contextual security and with a means for scaling. Modern consumer and enterprise applications require Layer 7 defense. Adding capabilities into existing platforms offers a sense of reliability and control. I would caution people to evaluate platforms capable of addressing numerous market segments and risk tolerances. I think one of the real challenges that the cyber community faces are providing quality security to more businesses.” Visit www.radware.com
Music to my ears! Lin Manuel Miranda is reportedly working on a new concept album based on the cult movie, Warriors! The kicker: It sounds an awful lot like the plot of The Outsiders. Looks like the Greasers and Socs might also have to fight The Warriors for turf on Broadway... Oh, Mary! has opened on Broadway and it is sending the critics into a laughter spiral! Their reviews are on fire! To round out Broadway news, TV heartthrob, Rudy Pankow, from the Outer Banks is making his stage debut as Romeo in the American Repertory Theater's production of Romeo and Juliet! Patreon: Click HERE to become a Broadway Bestie TikTok: @LindseyStone_BroadwayInstagram: @FromTheMezzanine_PodcastYoutube: @FromtheMezzanineBroadwayBroadway Spotify Playlist: https://open.spotify.com/playlist/5t55fULcCqN0NMmK4OnfOA?si=89c08b1a8bb34d95
Guests: Mitchell Rudoll, Specialist Master, Deloitte Alex Glowacki, Senior Consultant, Deloitte Topics: The paper outlines two paths for SOCs: optimization or transformation. Can you elaborate on the key differences between these two approaches and the factors that should influence an organization's decision on which path to pursue? The paper also mentions that alert overload is still a major challenge for SOCs. What are some of the practices that work in 2024 for reducing alert fatigue and improving the signal-to-noise ratio in security signals? You also discuss the importance of automation for SOCs. What are some of the key areas where automation can be most beneficial, and what are some of the challenges of implementing automation in SOCs? Automation is often easier said than done… What specific skills and knowledge will be most important for SOC analysts in the future that people didn't think of 5-10 years ago? Looking ahead, what are your predictions for the future of SOCs? What emerging technologies do you see having the biggest impact on how SOCs operate? Resources: “Future of the SOC: Evolution or Optimization —Choose Your Path” paper and highlights blog “Meet the Ghost of SecOps Future” video based on the paper EP58 SOC is Not Dead: How to Grow and Develop Your SOC for Cloud and Beyond The original Autonomic Security Operations (ASO) paper (2021) “New Paper: “Future of the SOC: Forces shaping modern security operations” (Paper 1 of 4)” “New Paper: “Future of the SOC: SOC People — Skills, Not Tiers” (Paper 2 of 4)” “New Paper: “Future Of The SOC: Process Consistency and Creativity: a Delicate Balance” (Paper 3 of 4)”
Chapter 1:Summary of Book The outsiders"The Outsiders" is a coming-of-age novel by S.E. Hinton, first published in 1967. The story is set in a small town in the United States in the 1960s and revolves around the intense conflict between two groups: the Greasers and the Socs (short for Socials). The Greasers are from the lower socio-economic class, often characterized by their long, greased hair, while the Socs are from the wealthier class and have a much more privileged upbringing.The novel is narrated by Ponyboy Curtis, a 14-year-old Greaser with a gift for storytelling. Ponyboy lives with his two older brothers, Sodapop and Darry, who are taking care of him after their parents died in a car accident. Despite tough circumstances, the brothers share a close bond.The plot kicks off when Ponyboy and his friend Johnny Cade, another Greaser, are attacked by a group of Socs. The confrontation ends in tragedy when Johnny kills one of the Socs, Bob Sheldon, in self-defense. Fearing the consequences, Ponyboy and Johnny flee and hide out in an abandoned church with the help of their friend and fellow Greaser, Dallas Winston.As they hide from the police, Ponyboy and Johnny bond and discuss deeper topics, such as life, their families, and their future. However, their hideout eventually catches fire while a group of schoolchildren is visiting. Ponyboy and Johnny heroically save the children but Johnny is seriously injured during the rescue.The event garners media attention, and the Greasers and Socs become even more entrenched in their conflict. Meanwhile, Johnny's condition worsens, and he dies in the hospital. Distraught, Dallas reacts impulsively and meets a tragic end after a confrontation with the police.The novel culminates with Ponyboy reflecting on the events and writing his school assignment about them, concluding with the realization that despite class differences, pain and suffering are universal—echoing his reading of Robert Frost's poem "Nothing Gold Can Stay," and the recurrent theme that life's precious moments are fleeting."The Outsiders" is a poignant exploration of friendship, societal expectations, family, and identity, appealing to young readers with its candid portrayal of teenage struggles in the face of socio-economic divides.Chapter 2:The Theme of Book The outsiders"The Outsiders," written by S.E. Hinton and published in 1967, is a novel about teenage gangs and the conflicts between them. Set in a small town in the 1960s, it focuses on the struggles between two rival groups, the Greasers and the Socs, who are differentiated by their socioeconomic statuses.Key Plot Points:1. Introduction to Conflict:The story opens by introducing Ponyboy Curtis, a 14-year-old Greaser, who is jumped by a group of Socs as he's walking home from a movie theater. This sets the scene for the ongoing rivalry and social conflict.2. The Drive-In Movie:Ponyboy, along with his brothers Darrel (Darry) and Sodapop, and friends Johnny and Two-Bit, meet Cherry Valance and Marcia at a drive-in movie. Despite being Socs, Cherry and Ponyboy develop a mutual understanding and discuss their differences and similarities, bridging the gap between their social classes momentarily.3. Johnny Kills Bob:The conflict escalates when Johnny, in self-defense, kills Bob Sheldon (a Soc) after he and his friends try to drown Ponyboy in a park. Fearful of the consequences, Johnny and Ponyboy flee to a church hideout in a nearby town with the help of their friend Dallas (Dally) Winston. 4. The Church Fire:While in hiding, a fire breaks out in the church Johnny and Ponyboy are in, and they heroically save a group of children trapped inside. Both get injured, and their act of bravery receives media coverage, altering the public's perception of the Greasers.5. The Rumble:After returning...
In this episode of the Detection at Scale podcast, Jack speaks to Daniel Wiley, Head of Threat Management and Chief Security Advisor at Check Point Software, to discuss the intricacies of balancing technology and human analytics in cybersecurity. Daniel shares his experiences in building three successful internal startups at Check Point and emphasizes the importance of continuous learning throughout one's career. He also touches on effective incident response strategies for small- to medium-sized businesses, and the vital role of adaptable data schemas in managing large-scale security operations. Topics discussed: The highs and lows experienced in the cybersecurity startup journey, including the importance of quick decision-making and team-building. Strategies for developing effective IR playbooks tailored for small- to medium-sized businesses to handle security threats efficiently. The integration of machine analytics and human expertise to manage and interpret large volumes of cybersecurity data. Managing 24/7 global SOCs, including the challenges of shift rotations and ensuring analysts are not overloaded. Techniques for determining which data is crucial for cybersecurity efforts and how to handle terabytes of data per second. The necessity of ongoing education and staying updated with the latest in cybersecurity to maintain effectiveness in the field. The significance of hiring the right team from the start and making swift, decisive personnel changes when necessary. Check Point's focus on maintaining high operational margins and its impact on the business's success and sustainability. Resources Mentioned: Daniel Wiley on LinkedIn Check Point Software website The Hard Thing About Hard Things by Ben Horowitz Cyber for Builders by Ross Haleliuk
Are we on the brink of a new era in cybersecurity, one where artificial intelligence (AI) reshapes how we protect our digital frontiers? Join us on this episode of Tech Talks Daily as we delve into this fascinating topic with Andrew Hollister, Chief Information Security Officer and Vice President of Labs R&D at LogRhythm. In our conversation, Andrew shares his insights on the evolving role of generative AI in cybersecurity. Despite widespread apprehension that automation may displace human analysts, Andrew suggests a different narrative—AI as a collaborator enhancing human capabilities, not replacing them. With its rapid development, generative AI is finding its place in cybersecurity, aiding in tasks like summarizing threat reports, detecting patterns in massive datasets, and translating technical log data into understandable language. However, the technology has its challenges. Andrew points out the potential risks of AI, such as producing misleading information—what he terms "hallucinating false facts." This underscores the irreplaceable role of human oversight, where seasoned analysts apply critical judgment to AI outputs. Looking ahead, we explore the future skills necessary for cybersecurity professionals. As AI takes over more routine, data-heavy tasks, there's a growing need for roles focused on strategy, problem-solving, and lifelong learning to adapt alongside evolving technologies. What will the future security operations centers (SOCs) look like? How will AI transform the cybersecurity landscape? After listening to our discussion, what are your thoughts on AI's role in cybersecurity? Share your views with us as we explore these questions and more.
On this episode, Paul shares his thoughts on the Snapdragon X Elite chip with Leo and Richard. Windows 11 24H2, AI, NPUs, and SoCs from Intel, AMD, and Qualcomm are all on the way this year. But a schedule is finally starting to emerge. And it looks like we'll soon have answers to the questions about how or why AI will matter on PCs. Windows, AI, and the future Windows 11 version 24H2 - staggered release schedule as discussed last week Qualcomm Snapdragon X Elite-based PCs in May/June - nothing but good news to date, but Paul went hands-on last week. It's the real deal. Intel's first-gen Core Ultra chipsets are lackluster, but now we have big promises for Arrow Lake in late 2024 Microsoft Build 2024 is in mid-May, and now we have a session list with some nice clues. For example, Introducing the Next Generation of Windows on Arm Microsoft is expected to unveil 24H2 and new X Elite-based Surface PCs at Build Computex and other milestones, and then back-to-school and holiday selling periods Windows 11 Moment 5 arrives in stable with yesterday's Patch Tuesday (which is now called the General Availability channel, by the way). Of course, we still don't have all the features. In particular, waiting on Android phone as a webcam. IDC says PC market grew by 1.5 percent in Q1 and acts like it's the turnaround of the century Microsoft is manually blocking certain registry keys related to default browsers now: Apple-like non-EU belligerence or pragmatic protection of user choice? Why can't it be both? Beta channel (last week) - Copilot actions improvements New Store app update improvements performance dramatically The Windows 11 de-ensh*ttification experiments continue Does Windows 11 Enterprise solve the problem? No. So it's time to move on Hardware TSMC gets some of that sweet, sweet CHIPS Act money to expand its US operations AI Three AIs comparison Blockbuster report claims OpenAI/Microsoft, Google, and Meta stole content at scale to train AI Microsoft opens a new AI hub in London Google mulls charging for generative AI in Search Spotify lets user create AI playlists using text prompts now Brave brings Leo to iOS, so it's on all supported platforms now. And it added Leo to Brave Talk Premium too Google rebrands Studio Bot to Gemini in Android Studio, still in preview. This is their GitHub Copilot Xbox Microsoft rolls out April updates for Xbox consoles, Xbox app on PC Xbox reorgs, Kareem Choudhry leaves Microsoft A rumored game preservation team is too obvious not to be true Tips and Picks Tip of the week: Microsoft Store hosts its annual Spring Sale App picks of the week: Standard Notes & Beeper RunAs Radio this week: Securing AI with Sarah Young Brown liquor pick of the week: Dalwhinnie 15 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: cachefly.com/twit
On this episode, Paul shares his thoughts on the Snapdragon X Elite chip with Leo and Richard. Windows 11 24H2, AI, NPUs, and SoCs from Intel, AMD, and Qualcomm are all on the way this year. But a schedule is finally starting to emerge. And it looks like we'll soon have answers to the questions about how or why AI will matter on PCs. Windows, AI, and the future Windows 11 version 24H2 - staggered release schedule as discussed last week Qualcomm Snapdragon X Elite-based PCs in May/June - nothing but good news to date, but Paul went hands-on last week. It's the real deal. Intel's first-gen Core Ultra chipsets are lackluster, but now we have big promises for Arrow Lake in late 2024 Microsoft Build 2024 is in mid-May, and now we have a session list with some nice clues. For example, Introducing the Next Generation of Windows on Arm Microsoft is expected to unveil 24H2 and new X Elite-based Surface PCs at Build Computex and other milestones, and then back-to-school and holiday selling periods Windows 11 Moment 5 arrives in stable with yesterday's Patch Tuesday (which is now called the General Availability channel, by the way). Of course, we still don't have all the features. In particular, waiting on Android phone as a webcam. IDC says PC market grew by 1.5 percent in Q1 and acts like it's the turnaround of the century Microsoft is manually blocking certain registry keys related to default browsers now: Apple-like non-EU belligerence or pragmatic protection of user choice? Why can't it be both? Beta channel (last week) - Copilot actions improvements New Store app update improvements performance dramatically The Windows 11 de-ensh*ttification experiments continue Does Windows 11 Enterprise solve the problem? No. So it's time to move on Hardware TSMC gets some of that sweet, sweet CHIPS Act money to expand its US operations AI Three AIs comparison Blockbuster report claims OpenAI/Microsoft, Google, and Meta stole content at scale to train AI Microsoft opens a new AI hub in London Google mulls charging for generative AI in Search Spotify lets user create AI playlists using text prompts now Brave brings Leo to iOS, so it's on all supported platforms now. And it added Leo to Brave Talk Premium too Google rebrands Studio Bot to Gemini in Android Studio, still in preview. This is their GitHub Copilot Xbox Microsoft rolls out April updates for Xbox consoles, Xbox app on PC Xbox reorgs, Kareem Choudhry leaves Microsoft A rumored game preservation team is too obvious not to be true Tips and Picks Tip of the week: Microsoft Store hosts its annual Spring Sale App picks of the week: Standard Notes & Beeper RunAs Radio this week: Securing AI with Sarah Young Brown liquor pick of the week: Dalwhinnie 15 Hosts: Leo Laporte, Paul Thurrott, and Richard Campbell Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: cachefly.com/twit
© 2020-2025 Ivy Podcast Discovery LLC
