Today on the Future of Security Operations podcast, Thomas is joined by Jack Naglieri, CEO of Panther Labs, a cloud-native SIEM platform that alleviates the pain of traditional SIEM with detection-as-code, a robust security data lake, and huge scalability with zero-ops.
Topics discussed in this episode:
The challenges Jack faced while working on security teams at organizations like Yahoo and Airbnb.
The difference between security at Yahoo and Airbnb.
The origin story of StreamAlert - the open-source tool Jack built while working at Airbnb.
How a VCs cold email eventually led to Jack founding Panther Labs and how they acquired their first customers.
How Panther is different from traditional SIEM platforms.
What you need to know about detection-as-code and security data lakes.
Why teams need to focus on security — not operations.
Lessons learned from Jack working closely with fast-growing sophisticated security teams that make up Panther’s customer base.
What security operations will look like in the future.
Why security teams must learn and embrace automation to deal with the challenges of cloud-scale security.
What features are coming next from Panther Labs.
Resources mentioned in the episode:
Jack’s podcast: Detection at Scale
Jack’s blog post: From StreamAlert to Panther
Jack’s keynote releasing StreamAlert: USENIX Enigma 2017 — StreamAlert: A Serverless, Real-time Intrusion Detection Engine