We dont have artificial intelligence (yet) Algorithms are getting smarter, but experts are more important Stop throwing algorithms on the wall - they are not spaghetti Understand your data and your algorithms Invest in people who know security (and have experience) Build systems that capture expert knowledge Think out of the box, history is bad for innovation

AI & ML IN CYBERSECURITY – Why Algorithms Are Dangerous

Join me for my talk about AI and ML in cyber security at BlackHat on Thursday the 9th of August in Las Vegas. I’ll be exploring the topics of artificial intelligence (AI) and machine learning (ML) to show some of the ‘dangerous’ mistakes that the industry (vendors and practitioners alike) ... Read More
Security Analyst Summit 2018 in Cancun – AI, ML, And The Sun

Security Analyst Summit 2018 in Cancun – AI, ML, And The Sun

Another year, another Security Analytics Summit. This year Kaspersky gathered an amazing set of speakers in Cancun, Mexico. I presented on AI & ML in Cyber Security – Why Algorithms Are Dangerous. I was really pleased how well the talk was received and it was super fun to see the ... Read More
Virtual Reality in Cyber Security

Virtual Reality in Cyber Security

I just read an article on virtual reality (VR) in cyber security and how VR can be used in a SOC. Image taken from original post The post basically says that VR helps the SOC be less of an expensive room you have to operate by letting a company take ... Read More

AI in Cyber Security – Where We Stand & Where We Need to Go

I have been talking about artificial intelligence (AI) and machine learning (ML) in cyber security quite a bit lately. My latest two essays you can find as guest posts on TowardsDataScience and DarkReading. Following is a summary of the latest AI and ML posts with quick summaries: Machine Learning and ... Read More
5 challenges

5 Security Big Data Challenges

Previously, I started blogging about individual topics and slides from my keynote at ACSAC 2017. The first topic I elaborated on a little bit was An Incomplete Security Big Data History. In this post I want to focus on the last slide in the presentation, where I posed 5 Challenges ... Read More

Startup Marketing

| | Marketing
You are an enterprise software startup. You are in the security space. Your company is still early, trying to sign its first 10, maybe 40 customers. What should you be doing for marketing? What works? What doesn’t? What approaches yield the biggest return for your investment? These are some questions ... Read More
Security Data History

An Incomplete Security Big Data History

Earlier today I was giving the keynote at ACSAC 2017. This year’s theme of the conference is big data for security. As part of my keynote, I talked about the history of big data in security. Following is the slide I put together: This is by no means a complete ... Read More

Security Chat 4.0 in Zurich

| | Uncategorized
Last week I organized the 4th iteration of the Security Chat – an informal gathering of security people in Zurich. The format are 10-15 minute presentations that anyone can submit for. In good tradition, we had a great line up again: Steve Micallef – OSINT and The New Perimeter – ... Read More
Unsupervised machine learning on network traffic

Unsupervised Machine Learning in Cyber Security

| | Uncategorized
After my latest blog post on “Machine Learning and AI – What’s the Scoop for Security Monitoring?“, there was a quick discussion on twitter and Shomiron made a good point that in my post I solely focused on supervised machine learning. In simple terms, as mentioned in the previous blog ... Read More

Machine Learning and AI – What’s the Scoop for Security Monitoring?

The other day I presented a Webinar on Big Data and SIEM for IANS research. One of the topics I briefly touched upon was machine learning and artificial intelligence, which resulted in a couple of questions after the Webinar was over. I wanted to pass along my answers here: Q: ... Read More