analytics

NTA: The Other IDS?

| | analytics, network, NTA, security
Have you ever wondered why academic literature – however silly much of infosec academic research is – always talks about “signature-based IDS” (“misuse”) and “anomaly-based IDS” (“abuse”), but most industry people instantly ...
Anton Chuvakin

More on Security Data Lakes – And FAIL!

| | analytics, big data, security
Naturally, all of you have read my famous “Why Your Security Data Lake Project Will FAIL!” [note: Anton’s ego wrote this line :-)] Today I read a great Gartner note on data ...
Anton Chuvakin

What Is “SIEM+” Or “Can We Have A Cyber Defense Platform?”

| | analytics, future, security, SIEM
Contrary to what some “analytics” or “AI” vendors will have us believe, SIEM in 2018 is not the SIEM of our grandfathers. In 2002, when I was first initiated into the dark ...
Anton Chuvakin
Privacy Policies: The Realm Of The Legible Word Salad by Chris Boyd

Exploring the virtual worlds of advergaming

| | advergaming, analytics, Conferences, games, gaming, security, Security world, social engineering, tracking
With a spot of tracking-related controversy ruffling feathers in gaming circles, now is a good time to become familiar with some of the advertising methods used for, and in, video games. Ladies ...
Malwarebytes Labs

“Do They Have AI?” or That Rant on AI in Security

| | analytics, future, philosophy, security bloggers network
This post is inspired by a few painful discussions on artificial intelligence (AI) that I had both in public (on Twitter) and internally too. Let’s start with a joke: Q: How do ...
Anton Chuvakin

Create a Team for Audit Analytics? Part 3

| | Agile, analytics, Audit, cons, data analytics, dedicated, department, everyone, flexible, Growth, how to, hybrid, increase, left behind, management, proficiency, pros, security bloggers network, Skills, team, technology, virtual, Written by Skyyler
In the previous post, Create a Team for Audit Analytics? Part 2, I explored the pros and cons of expecting all auditors to develop a level of data and analytic proficiency. These ...
ITauditSecurity

Create a Team for Audit Analytics? Part 2

| | analytics, Audit, cons, data analytics, dedicated, department, Growth, how to, increase, proficiency, pros, purple unicorn, security bloggers network, Skills, team, technology, Written by Skyyler
In the previous post, Create a Team for Audit Analytics? Part 1, I explored the pros and cons of developing an analytics team. This team consists of analytic auditors who are dedicated ...
ITauditSecurity
Splunk to Dive Deeper into Cybersecurity with Phantom Buy

Splunk to Dive Deeper into Cybersecurity with Phantom Buy

| | acquisition, analytics, Splunk
For a long time now Splunk has been content to essentially offer up cybersecurity advice made possible by applying analytics to machine data captured within the logs of various systems. That information ...
Security Boulevard

Create a Team for Audit Analytics? Part 1

| | analytics, Audit, cons, data, data analytics, everyone, how to, proficiency, pros, security bloggers network, silo, Skills, team, technology, throw over the wall, Written by Skyyler
Once your audit team has proven the value of doing analytics consistently, the next question is: Do we create an analytics team and have the team do all (or the majority) of ...
ITauditSecurity

5 Things We Need from ACL in 2018

| | 5 ACL Things to Hope for in 2018 #ACLanalytics #2018 #hope, ACL, analytics, Audit, audit command language, CAE, capability gap, ceo laurie schultz, charts, clean, conference, connections, dan zitting, dashboard, data, data analytics, excel, excel power query, fake news, general session, graphics, GRC, hate, John Verver, keith cerny, keynote, M script, management, millennials, plastic surgeon, Power BI, push, Scripting (ACL), security bloggers network, sell, Skills, supervision, tableau, technology, time, training, transform, user friendly, user interface, visualizations, Written by Skyyler
Here’s the 5 things I’m hoping will change in 2018 regarding ACL. They are all related to each other and feed off each other… Interesting. One) The ACL Analytics user interface (UI) ...
ITauditSecurity