Discover strategies for building world-class security operations in this 32-minute Black Hat conference talk. Learn how to navigate the challenges of modern cybersecurity operations centers (SOCs) and adapt to rapidly changing threats. Explore an actionable strategic roadmap for organizations of all sizes to enhance their security operations. Gain insights on prioritizing defense and detection techniques, addressing adversaries hiding in IT infrastructure, and balancing agility with visibility. Understand the importance of hiring well, leveraging threat intelligence, anticipating adversary moves, and selecting the right data for analysis. Learn how to effectively use tools to support analyst workflows and balance information sharing with protection. Equip yourself with the knowledge to confidently manage chaos and build a robust security operations framework.
Confidence in Chaos - Strategies for World-Class Security Operations
Overview
Syllabus
Intro
SOCS Operate in a Shifting Landscape
The 11 Strategies
Know What You are Protecting and Why
Balance Size with Agility and Visibility
Hire Well & Encourage Growth
Illuminate Adversaries with Threat Intelligence
Anticipating Adversaries
Select and Collect the Right Data
Leverage Tools to Support Analyst Workflow
Balancing Sharing & Protection
Conclusion & Questions
Taught by
Black Hat
