Jimmy Vo

Actually don't dunk on any security team dealing with shit unless you want me to heel hook you

Before you speculate and dunk on Snowflake's Security team, remember they're real fucking good a threat detection. How would I know? I've built a threat detection program based off their Threat Detection Maturity Model: medium.com/snowflake/thre… #hugops

ugh computers

@pb609plus1 lmaooo

What a random suggestion on FB @JimmyVo

@mattjay Matthew StudlySwolehansen

I like how if I get a text from a number I don't know and it refers to me as "Swolehansen" I know its someone in the @JimmyVo sphere of influence.

@techyteachme @christophetd @poledesfetes 🔥🔥🔥

@madplatt Please send me 7 of those drinks, thank you mate

Self care Fridays combined with 2 for 1 cocktails with the wife 😅

@Beaker 👀

@webjedi @CallofDuty 😂

Seriously, I hate @CallofDuty MW2 already - and I haven't even played it... why? Because all day I've been hearing my wife yelling in the other room at other players and complaining about the game. Totes distracting 0 out of 10, would not recommend.

@dakacki @threathuntergrl ❤️

@threathuntergrl Literally @JimmyVo

@TheNJDevOpsGuy Glad to see you covering it. Security folks are also trying to get up to speed on detection and preventing threats on k8

I'm excited to break down the theory and hands-on security practices for Kubernetes in chapter 8, which is the final chapter of my book :). amazon.com/Kubernetes-Con… #kubernetes #security #devops

This is probably going to be my most favorite chapter of my new book. From what I see in the Kubernetes space, security is severely underlooked. A thread 🧵

@liannananners 🤝

You get “you up?” texts for booty calls. I get them from pager duty. We are not the same

@TheAndrewCook @tuckner @OpenAI It has become self aware

@tuckner @JimmyVo @OpenAI Veerrry interesting. When your automation is creating your automation we're getting scary close to the singularity.

@JimmyVo you gave me an idea....will @OpenAI be writing our threat detections next? Here's a first attempt without any special training data; it seems to get the gist of it. Will we someday skip this human-centric step completely? #Blueteam #BlueteamAI

@jfslowik I’m glad I did sometime as an intel analyst before going back on the detection side

85%+ of commercial #CTI are folks who've never defended a network vomiting up malware analysis to orgs that barely know how to effectively use their fancy EDR (if they even have one)

@TheAndrewCook @OpenAI It’ll write splunk queries for you too

Messing around with @OpenAI looking for some interesting #BlueTeam use cases is like playing two truths and a lie: shocking accuracy followed complete fiction. Here's the (slightly modified) 2021 Kesaya attack as analyzed by a robot. Any lies? Try it out! beta.openai.com/playground/p/r…

@Bandrel Fingers crossed for ya

Waiting for an MRI and MRA wish me luck.

@NicoleBeckwith Glad she’s okay, hoping you get answers and never have to experience that again

When your child goes limp in your hands, turns blue, their eyes roll back in their head and as you are trying to revive them they urinate all over you, your world falls apart. I never want to experience that again. We have a long road of tests ahead but for now she’s okay.

@JbAviat Wow looks great!

Application Security Management detects threats with an unprecedented signal to noise ratio, and now we’re adding blocking capabilities, accessible in 1 click, without deploying new components. 9/

I’m hyped to share with you what we’ve been building those last months! The world of security is traditionally secretive, but @datadoghq comes from observability… I’ll be live-tweeting in this threat̵d #dash2022 1/

@JulianWieg Do you perform small atomic tests within the cicd pipeline or do you find unit tests reliable enough to validate a detection?

@anton_chuvakin @apbarros (Aka the SIEM vendors should build these type of checks and test capabilities into their products cause not every company can invest this much into something that “should work if I switch this toggle on if it costs me millions just buying and rolling out a SIEM”)

How many of your #SIEM rules never ever triggered? (inspired by @apbarros conversation)