Josh Zelonis

I'm claiming analyst privilege on XDR: 1) The acronym is Extended Detection & Response 2) Fully formed XDR capabilities are vendor agnostic and do detection on application, endpoint, and network telemetry. 3) If this sounds like a SIM use case it's because this is not new.

Apa kabar?

@jeff_pollard2 @hackerxbella @anton_chuvakin Spoken like someone who’s never eaten the cake at a kids birthday party.

@hackerxbella @josh_zelonis @anton_chuvakin Autonomous via levels isn't exactly a winning combo. Let's say you make a cake, and you realize there's a low level of💩in the cake. Do you eat the cake? Sometimes a little of something is worse than none at all. Also conflating safety and security is always a mistake.

🧵 the 'Autonomous SOC' is a pipedream. 1/n forrester.com/blogs/the-auto…

@hackerxbella @anton_chuvakin /nudge

@josh_zelonis @anton_chuvakin .....right. and we don't have those levels in cyber. so not sure what point you're trying to make here.

@hackerxbella @anton_chuvakin Trying to think of who would be in a position to do so though 🤔🤣

@hackerxbella @anton_chuvakin SAE is an independent org, I wouldn’t trust vendors to define the levels or certify themselves.

@hackerxbella @anton_chuvakin I get it, but even the automotive industry has introduced levels of what it means to be autonomous. sae.org/blog/sae-j3016…

@josh_zelonis @anton_chuvakin we clarify terminology, what the technology is actually capable of, and then describe how they can best make use out of it. You can't skip step 1, because unfortunately, a lot of people put out false narratives on this to make money.

@anton_chuvakin @hackerxbella Yes, and if any of the companies marketing autonomous soc had actually accomplished it, they would be screaming it from the rooftops. So how do we help people find the intersection of marketing and reality?

@hackerxbella A SOC without humans is also a dangerous dream, as it will corrupt the weak minds of some leaders and they will as a result destroy what they built :-(

@hackerxbella So we’re being pedantic about the word ‘autonomous’ instead of highlighting the optimizations available to help your clients.

The ‘Autonomous SOC’ will not be able to operate beyond the constraints we define, and thus, will always be susceptible to attack and pose its own risk to the organization. fin. Read the full blog: forrester.com/blogs/the-auto…

"Your Security Data Strategy Sucks Because You Don’t Have One" Important lessons from the data economy (...and yes, there's cookies) link.medium.com/QzgWA02z7tb

If I’m being totally honest, Let’s Encrypt would have been brand marketing genius for a ransomware-as-a-service operator as well.

Taking a look at the XDR market and why many solutions struggle to deliver threat detection that's more than the addition of alert aggregation. Data Expertise Is the Foundation of Good Threat Detection paloaltonetworks.com/blog/2022/07/t…

Trying to take a nap on my day off and the doggie not having it…

Hating the term "autonomous security" isn't going to make it go away. I just published a blog where I explore the vision and how marketing teams can help make it less scary. How I Learned To Stop Worrying And Love… Autonomous Security? link.medium.com/lMm4l196Vqb

@ChefSuziGerber You lost me at no honey.

Who believes LaMDA? What does this mean for the sentience wonks in the vegans vs vegans who eat oysters debate? #sentience

@0xEnder @MalwareJake That was always my understanding why Mexican cokes tasted different, and part of the magic was due to the cane sugar they were supposedly closer to the original formula so there was a little bit of romanticism about experiencing something from a different time, but I couldn’t say

@josh_zelonis @MalwareJake That magic is called “sucrose”, neh?

Okay SFO, we need to talk. No airline passenger ever has said "you know what I'd like before my flight? A cold drink. And make sure it's either in a can or a glass bottle please. That'll be perfect!"

Got my dad an Apple Watch for the fall detection. Yesterday it woke him up due to a low heart rate while he was dog sitting for me. Kinda shook that I might have come home to find my dad dead on my couch yesterday.

@infosec_jb @MalwareJake Favorite airport? The one that means I’m home.

You know the best part about traveling? Seeing friends and having experiences. You know the second best thing about traveling? Nothing.