Down the Security Rabbithole Podcast (DtSR)

DtSR Episode 609 - Jonathan Rau Ruins SIEM

Jul 9, 2024

Jonathan Rau, a cybersecurity expert, dives into the contentious world of SIEM systems—often labeled as dead yet continually revamped. He discusses the evolution of these tools, highlighting how initial goals were hindered by complexity and a lack of skilled personnel. Rau emphasizes the importance of purposeful data analysis, warning against using data models without clearly defining the problem. The conversation also critiques the influx of cybersecurity tools, urging a return to basics and a focus on genuine business needs.

35:01

Episode guests

Jonathan Rau

AI Summary

Highlights

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The conversation highlights SIEM's evolving nature and its ongoing relevance in security despite criticisms and emerging technologies.

Experts stress the need for security leaders to reassess their data collection practices to enhance relevance and operational efficiency.

Deep dives

The Evolution of SIEM Technology

SIEM technology has undergone significant changes over the years, leading to discussions about its current effectiveness. Initially designed to aggregate and analyze security data, many experts now view it as an 'undead' concept that continues to survive despite its limitations. As various new technologies and solutions emerged, such as cloud-native implementations and security analytics tools, the foundational purpose of SIEM seemed diluted. The conversation highlights the challenge within the security industry to balance between the cumulative tools used and the efficiency of the SIEM systems themselves.

Managing Security Complexity Requires Clarity

01:11

Intro

2min

The Evolution of SIEM Systems

11min

Rethinking Data Science in Cybersecurity: Importance of Purposeful Analysis

3min

Navigating Security Challenges: The SIEM Dilemma

8min

Navigating the Chaos of Cybersecurity Tools

10min

Send the hosts a message - try it now!

TL;DR: This week on the pod, Jonathan Rau joins to talk about SIEM. The thing we all lover to hate on, that thing that's been declared dead, and yet it's on its umpteenth incarnation. What does the future hold? Why is it still an investment organizations make? What makes it a good versus bad use-case? Tune in, find out.

YouTube video: https://youtube.com/live/FtCjMo_gDDc

Support the show

>>> If you're reading this, consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more