Automation has become so relevant to the mainstream; in our cars, our homes, and even our music. Allow me to digress a bit. The DAW (Digital Audio Workstation) is a mainstay in modern music production. In short, it’s HW or SW that musicians use to record, edit, and produce audio. If you’ve used tools like GarageBand, then you’ve experienced music production capabilities like that of a DAW.
I’ve been involved in information technology and the information security space for over twenty years and have seen an industry that’s been constantly trying to solve common IT security threats with a plethora of software and hardware tools. In the early days, antivirus appeared to be the right solution to the problem. As the sophistication of attacks … Continue reading My Journey to Security Automation & Orchestration
SecureWorld Boston is coming up next week (March 22-23) and I’ve just finished reviewing the agenda for sessions that I would like to attend. When looking at the topics through the lens of automation and orchestration, I always notice so many relevant options—more sessions than I’ll likely have time to attend. Talks like Designing and … Continue reading Automate Anything?
TED Talks have been the inspiration for several posts. There is likely a correlation between the time spent on airplanes and TED Talk references on the blog. In his talk titled, “How AI can bring on a second Industrial Revolution,” Kevin Kelly introduces several concepts germane to security automation. One claim Kevin made that really … Continue reading Your future salary might depend on how well you work with machines
A few lucky attendees at RSAC took home one of our customer commissioned Phantom LEGO SOC kits thanks to a casual comment by Sourabh, our CTO. He remarked how Phantom’s open and extensible architecture works like LEGO for the SOC since you can assemble our playbooks, apps, and actions to support just about any use … Continue reading More SOC Lessons from LEGO
We started a new series on the blog recently, designed to offer experience-based best practices for approaching SOC Automation. While most understand the value of automation broadly, developing practical use cases is the first step in realizing the benefits of this emerging technology. While the possibilities for automation are nearly endless, many start the journey with … Continue reading What Are You Willing to Automate?
Phantom is the first community-powered Security Automation & Orchestration platform. It’s not just lip service. Our focus on the security operations community is evident throughout the platform, from the free community edition, to the open and extensible architecture, to the shareable apps and playbooks. Phantom provides a free community edition and encourages all community members … Continue reading It’s Like LEGO for the SOC