Remove Presentation Remove Technology Remove Threat Detection
article thumbnail

How to Think about Threat Detection in the Cloud

Anton on Security

In this post, we will share our views on a foundational framework for thinking about threat detection in public cloud computing. To start, let’s remind our audience what we mean by threat detection and detection and response. Essentially, the realm where you have to detect threats is different?—?as

article thumbnail

Who Does What In Cloud Threat Detection?

Anton on Security

This post is a somewhat random exploration of the cloud shared responsibility model relationship to cloud threat detection. Funny enough, some popular shared responsibility model visuals don’t even include detection, response or security operations. Related blogs: “Why is Threat Detection Hard?” “On

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

SOC Technology Failures?—?Do They Matter?

Anton on Security

SOC Technology Failures?—?Do img src: [link] Most failed Security Operations Centers (SOCs) that I’ve seen have not failed due to a technology failure. Let’s stick to mostly technology focused failures. Perhaps the tool vendor made some incorrect assumptions about how their technology is really used in the real world?

article thumbnail

Why is Threat Detection Hard?

Anton on Security

While creating a recent presentation, I needed a slide on “threat detection is hard.” And it got me thinking, why is threat detection so hard for so many organizations today? This means we are “celebrating” ~35 years of cyber threat detection. This does make detection even harder. Action items?

article thumbnail

Presenting the Security Outcomes Study, Volume 2

Cisco Security

Cybersecurity teams must always up-level their own technology and strategies but, with limited time and resources, may find themselves asking questions like: Should I request funds for this initiative? What about insourcing or outsourcing threat management? . 4) Developing Accurate Threat Detection.

article thumbnail

Replace Your SIEM with Neural Net Technology

Security Boulevard

Security Information Event Management (SIEM) systems are an outdated technology. It’s no longer enough to just manage information – today’s organizations need technology that can proactively detect and respond to dynamic threats as well. But over the last five years, the threat landscape has changed quickly.

article thumbnail

Anton and The Great XDR Debate, Part 3

Anton on Security

To me, the answer is I need clarity in technologies that we deploy. The clarity is essential to match products to requirements, to compare tools, and to cover the gaps in detection and response posture (and in security in general). Somebody asked me on social media why I am so obsessed with XDR. What do you think?