SOCs for the Rest of Us

SOCs for the Rest of Us - Dave Herrald In this talk we will discuss key traits of some of the largest and most successful security operations centers we've visited over the last two years. From automating tier-1 to integrating investigations into Slack channels, from curating toolchains to cutting out threat feeds, we'll cover what’s working well and what challenges remain. Many industry verticals will be represented including financial services, multi-national conglomerates, entertainment, healthcare, energy, defense, technology, and dynamic internet startups.