Let’s Talk SOC – A Podcast Series Brought to You by Secureworks

What We'll Cover

- Maximizing talent to address risks: Minimizing the spend footprint
- CISO: The evolution of the role
- Security tech: Artificial Intelligence (AI) and incorporating humanization
- Focusing on the basics: What will pay the biggest dividends
- About Secureworks: Technology security solutions
- Looking ahead: Upcoming security threats and trends in 2023

What do you learn being a CISO at a company that helps support other CISOs? Ken Deitz, Chief Security Officer & Chief Information Security Officer at Secureworks, joins the Let’s Talk SOC podcast to discuss the current and upcoming security challenges CISOs are facing today and how they can best address them.

What We'll Cover

- Top tips for cyber incident preparedness
- Most common mistakes organizations make in a cyberattack
- Planning ahead and best practices
- The importance of roles and responsibilities in your response
- The value of threat intelligence during an incident
- Automation vs. the human touch in Cybersecurity

In this Let’s Talk SOC podcast, Lina Lau, Principal Incident Response Consultant at Secureworks, shares top tips to improve your incident preparedness. Learn the three most common mistakes Lau sees organizations make when they fall victim to a cyberattack while getting her most-recommended steps to improve the outcome of an incident. Finally, listen in as Lau discusses the limitations of EDR — and how organizations like yours can experience the value of responding to incidents with improved speed, expert insight, and security analytics.

What We'll Cover

- XDR vs. SIEM
- Investment level needed for a SIEM purchase
- SOAR platform: necessary or not?

Security Information and Event Management (SIEM) has been the solution of choice for many organizations over the years, but is it keeping up with the current demands of security teams? If you’re considering SIEM as a cybersecurity solution, listen in on this conversation with Justin Davis, Senior Systems Engineer, for what you need to know about SIEM before making additional investments.

What We'll Cover

- EDR and XDR: a comparison
- Combining XDR and MDR in the future
- EDR vendors: The secret to success
- How to find the right cybersecurity partner
- Secureworks transformation and emphasis

The era of solely relying on endpoint detection and response (EDR) is rapidly coming to an end. Even EDR vendors offering MDR or a cobbled-together extended detection and response (XDR) solution can’t solve growing attack surface gaps. In this Let’s Talk SoC podcast, Kyle Falkenhagen, Vice President of Product at Secureworks, discusses how organizations can move beyond their reliance on EDR to a solution that provides holistic security coverage that covers cloud, network, endpoint, and more using a purpose-built XDR security operations platform.

What We'll Cover

- The current state of cybersecurity in manufacturing
- Risks and impact of cyberattacks
- How manufacturers can justify security spend
- How Managed Detection & Response (MDR) can help

When it comes to cyberattacks, today’s manufacturers are in the front line defending their IT and OT landscape. Rapid digital transformation has exposed cracks in the defenses of many in the industry. Join Stacy Leidwinger, Vice President of Portfolio Marketing, to hear her take on rising threat levels in the industry. Discover the true cost of potential breaches and the best lines of defense – taking a comprehensive and proactive approach to prevention, detection, and response.

Expanding security threats require an expansive response, but how do you move beyond the endpoint without increasing complexity and risk? All too often, extended detection and response (XDR) is a complex hash of disjointed systems that struggle to plug the growing gaps in your attack surface. In this episode, Senior Product Marketing Manager George Anderson will tell you more about the “X” in XDR. He’ll explain what XDR is, including the distinction between XDR, EDR and MDR – and why you need to know the difference. We’ll discuss what to look out for in a vendor and how to know if a solution measures up. And we’ll explain why open, extensible security platforms hold the key to the future of XDR.

What We'll Cover

- EDR, MDR, and XDR: What’s the difference?
- Why make the move to extended detection and response (XDR)?
- How much more protection does XDR offer?
- What to look for in an XDR vendor
- The unique Secureworks approach

Join Stefan Oancea, Principal Security Engineer at Secureworks, to find out how Secureworks is extending the value of Microsoft security solutions to deliver customers greater value. He’ll offer insights on the latest Microsoft security offerings, including ways to determine if Sentinel is the right choice to run your threat prevention, detection, and response operations. Plus, learn how Secureworks integrates with your IT environment to maximize your existing investments and fill any cybersecurity talent gaps, all while reducing risk.

What We'll Cover

- Latest Microsoft security offerings
- Microsoft Sentinel – is it right for you?
- How Secureworks™ and Microsoft E5 work together
- How a dual approach elevates your defenses

As cyberattacks grow in frequency and severity, cyber insurance has never been more important. But rising risks can also mean rising premiums. How do you improve your security and minimize your premiums, while maximizing the value cyber insurance offers? In this episode, we talk to Florence Levy, Executive Vice President at INSUREtrust, a specialist cyber insurance broker. Florence offers fascinating insights on the interplay between cyber insurance and cybersecurity best practices — and the increasing role brokers are playing in helping clients improve their security posture and resilience. Find out what underwriters look for when evaluating your risk profile and the importance of threat prevention, detection, and response in assessing your cybersecurity strategy.

What We'll Cover

- What is cyber insurance and what does it cover?
- The role of cyber insurance in your overall security strategy
- What brokers look for when assessing your risk profile
- How to improve your security posture and reduce insurance costs
- The role of managed services in mitigating cyber risk

What you'll learn:
• Incident management versus incident response
• How Secureworks takes a holistic approach
• Key lessons learned from real-life engagements
• The top three things to look for in providers

Incident management is about so much more than emergency response, something Kevin Strickland knows all about. In this episode, the Secureworks™ Director of Emergency Incident Response lays bare the scope and intricacies of effective incident management.
You’ll hear how Secureworks anticipates, prevents, handles, and contains incidents – proactively and holistically – and how experience and lessons learned from client engagements are ultimately the best teacher. Get insight into the software and “cyber detectives” that root out and repel threats – plus, hear Kevin’s top tips for choosing the right provider.

What you'll learn:
• The evolution of the ransomware “marketplace”
• Common vulnerabilities and pitfalls
• Real-life examples of ransomware engagements
• Cyber essentials for better protection
• How Secureworks can help minimize risk
• What does cybercrime have in common with your business? More than you might expect.

Terry McGraw, Secureworks VP of Global Cyber Threat Analysis, offers fascinating insight into the rise of ransomware as a service — and the increasing professionalism of the cybercrime “businesses” behind attacks. Drawing from his own experience across thousands of engagements, he’ll show you how best to protect your business, with methods ranging from patch management and MFA to identity management and backups.

What you'll learn:
• A look back — and forward — at the cybersecurity landscape
• New technologies and strategies for managed security services
• Five things MSSPs need to offer today
• The role of intelligence in proactive threat hunting
• The need for open technology and industry collaboration

Managed security services are evolving rapidly in response to radical changes in the cybersecurity landscape. In this episode, we talk to Ajay Bhardwaj, General Manager of the Secureworks® Managed Security Services Program. Ajay explains how the unprecedented pace of change has shaped a need for more innovative and proactive managed services, including managed detection and response. He takes us through the must-have tools and technologies that MSSPs need to deploy in order to reduce alert fatigue, increase intelligence, and proactively hunt down threats. Openness and collaboration are also key take-home messages, not just in technology but throughout the cybersecurity ecosystem. Join us to discover how new and improved managed security services can help customers safeguard their systems.

What you'll learn:
· Common ransomware attack vectors
· Secureworks® holistic approach to ransomware preparedness
· Real-world examples of customer engagements
· Deep-dive into “pentesting” and why it’s so important
· Safeguarding compliance with regulatory requirements

You can never be too ready for a ransomware attack. But what does it really take to cover all the bases? Enter Eric Escobar, Secureworks Principal Security Consultant, who lives and breathes ransomware preparedness. Hear how Eric and his team take on the role of "ethical hackers," simulating real-world attacks to uncover vulnerabilities.

Discover the importance of thorough penetration testing and looking at your risks from every possible angle. Hear how Secureworks helps companies prepare for the worst – with the very best in offensive and defensive security.

How is artificial intelligence (AI) changing the cybersecurity landscape? Will it reduce, or add to, your organization’s risk? In this episode, we explore how AI-based cybersecurity can be a powerful force for good.

Join Tom Harrison, Secureworks Senior Security Operations Manager, to learn more about the “intelligence” behind AI. From machine learning to generative AI, you’ll hear how Secureworks uses AI to accelerate and enhance detection and response, and how it makes analysts more efficient. Delve into the ethics and explore the partnership between human and machine. You’ll also get a glimpse of what tomorrow holds, as we look ahead to AI’s role in the future of cybersecurity.

What you’ll learn:
• The impact of AI on the cybersecurity landscape
• Use cases and benefits
• How Secureworks leverages AI
• Ethics, transparency and trust
• Outlook for the future

The case for automation in cybersecurity is strong. Talent is scarce and cyberattacks are on the rise. Meanwhile, the systems required to manage an effective SOC are often complex and diverse.
In this episode, we’re joined by Elvis Hovor, Sr. Director Product Management at Secureworks. He explains how today’s SOC analysts are overwhelmed by alerts and the weight of responsibility to protect their organizations. Automation is essential to helping them do their job with greater confidence and time to focus on what really matters. While reducing alert fatigue and the risk of human error, intelligent technologies like automation, AI, and machine learning deliver insights that greatly enhance investigative work. Learn how this works in practice with real customers, helping analysts hunt down and fend off even the most sophisticated threats.

What you’ll learn:
• Why automation is essential in today’s cybersecurity landscape
• The combined power of human and machine intelligence
• The benefits for prevention, detection, and response
• How a strong security partner can help SecOps teams leverage automation, AI, and machine learning
• How this works in practice in customer engagements

In today’s cyber battleground, AI is fighting for both sides. Weaponized by threat actors, it’s also a trusted ally of leading cyber defenders.

In this episode, you’ll hear from leaders at Secureworks and SentinelOne on their use of AI in the fight against cyber criminals misusing the technology. Learn how AI accelerates learning and powers through data, freeing up analysts to focus on higher-level tasks. Hear how Secureworks and SentinelOne strike a balance between progress and responsibility, forging ahead with AI while setting standards in the industry. We’ll also discuss the importance of collaboration in shaping the role of AI in the future cybersecurity landscape.

What you’ll learn:
• The evolution of AI in the cybersecurity landscape
• The role of AI in threat detection and response
• How AI empowers and unburdens security analysts
• How to get the most from AI – safely and responsibly
• The importance of collaboration in shaping the best way forward

2023 has been a headline-grabbing year for cybersecurity, from high-profile breaches to supply chain attacks and eye-watering ransoms. Dramatic shifts in the physical and virtual worlds have reshaped the threat landscape, causing enterprises to take another look at their cybersecurity strategies.

Join Secureworks CISO Ken Deitz to review the big moments of 2023 – from the rise of AI to new cybersecurity rules. We’ll discuss the impact on the industry at large and how your business may be affected. And we’ll take a look at how best to ensure you’re ready for 2024.

What you’ll learn:
• Lessons learned from high-profile security breaches
• The rise of generative AI: opportunities and threats
• Industry impact of new cybersecurity regulations
• Changing boardroom priorities and the role of CISOs

Threat actors waste no time when it comes to inflicting damage, as recent Secureworks research revealed. In just two years, the average ransomware dwell time has dropped from 5.5 days to just short of 24 hours. That’s why monitoring your environment is more important now than ever – and why it’s becoming increasingly critical to cover all the bases.

In this episode, we talk to Bud Ellis, a Secureworks expert in the cybersecurity market. Join us to discuss current challenges – and how to address them – from an expanding attack surface to the growing cyber skills gap. You’ll hear the difference holistic monitoring can make when it comes to protecting your business and how the right MDR solution is equipped to plug every gap.

What you’ll learn:
• Why monitoring your environment is more important than ever
• The evolving threat landscape and growing skills gap
• Limitations of endpoint detection and response
• Benefits of holistic MDR solutions
• Importance of partnership and access to the right expertise