Overview
Explore interrogation techniques for designing better tools for SOC teams in this 25-minute conference talk from BSidesLV 2017. Discover the differences between building tools for yourself versus others, and learn the value of research in tool development. Gain insights into conducting effective research interviews, including prompting for task details and understanding problem management. Understand how to elicit information about current workarounds and mitigation strategies for existing issues. Apply these techniques to enhance your SOC team's toolset and improve overall efficiency.
Syllabus
Intro
WHAT LED ME HERE
WHEN YOU BUILD TOOLS FOR YOURSELF
WHEN YOU BUILD TOOLS FOR OTHERS
WHAT DOES RESEARCH BUY YOU?
THE RESEARCH INTERVIEW
WALK THROUGH THE STEPS OF THE TASK, DESCRIBE IN Prompt for details that let you see how the problems relate to the
WALK THROUGH THE STEPS OF THE TASK. DESCRIBE IN Prompt for details that let you see how the problems relate to the
HOW DO YOU MANAGE THIS PROBLEM TODAY? Are there workarounds that help mitigate the effects of the
SUMMARY
Taught by
BSidesLV