Automating Playbooks in a SOC

In this episode of CISO Tradecraft, host G Mark Hardy interviews JP Bourget about the security data pipeline and how modernizing SOC ingest can improve efficiency and outcomes. Featuring discussions on cybersecurity leadership, API integrations, and the role of AI and advanced model learning in future data lake architectures. They discuss how vendor policies can impact data accessibility. They also reflect on their shared Buffalo roots and because their professional journeys. Tune in for valuable insights from top cybersecurity experts.

Transcripts: https://docs.google.com/document/d/1evI2JTGg7S_Hjaf0sV-Nk_i0oiv8XNAr 

Chapters

• 00:00 Introduction
• 00:50 Guest's Background and Journey
• 05:27 Discussion on Security Data Pipeline
• 07:19 Introduction to SOAR
• 08:01 Benefits and Challenges of SOAR
• 12:40 Guest's Current Work and Company
• 14:04 Security Data Pipeline Modernization
• 22:20 Discussion on Vendor Integration
• 29:09 Security Pipeline Approach and AI
• 38:03 Closing Thoughts and Future Directions