Ad hoc operations in the SOC can lead to pain | Me on IDG.TV

At CircleCityCon, CSO’s Steve Ragan chats with Paul Jorgensen, host of the PVC Security Podcast, about ad hoc processes within many security operations centers (SOCs) and how organizations can prevent these types of mistakes.

Source: Ad hoc operations in the SOC can lead to pain | IDG.TV

I relished talking with Steve Ragan at CircleCityCon in Indianapolis last weekend (Saturday 11 June 2016). He recorded us in a bite-sized elevator-pitch of a summary of a key point or two of my talk, “Top 10 Mistakes in Security Operations Centers, Incident Handling, and Incident Response”.

Yes, our first take failed. We were joined then by Chris Maddalena, my co-host from the PVC Security podcast. Chris couldn’t be bothered to join us for the redo, probably because he was busy winning the whole conference or something.

Not only was I moments away from my talk as Steve mentioned in the open; I left straight from my session to the airport en route to Tokyo for work. You can’t see my luggage lurking behind me in the video.

Many thanks to Steve and IDG.tv for having me on. It was fun, deja vu included.

p.s. – I think the rhyme in the title could have been exploited more #justsayin

Also on:

Interim Symantec President Says Things, Causes Space/Time Rift To Open

Symantec will be filling an important product gap with its acquisition of Blue Coat Systems, Symantec’s interim president and chief operating officer Ajei Gopal said in an interview with Dark Reading this week.

Source: Symantec’s Purchase of Blue Coat Fills Critical Product Gap, Interim President Says

Translation:

Symantec was smart to buy my company, Blue Coat, and install me as the new president and CEO of Symantec. And as I’m the new Symantec head honcho I agree with the comments made by the former president and CEO of Blue Coat, the company Symantec just acquired.

And thus the PR multiverse folded in upon itself.

Also on:

Presentation: Top 10 Mistakes in SOC, IH & IR from @CircleCityCon

Here is the PDF with speaker’s notes of my CircleCityCon 2016 talk: Top_10_SOC_CCC2016

The video of my talk is here.

I thoroughly enjoyed speaking at the conference. Thank you to the audience, who were fantastic. I would be remiss if I did not also thank the CCC organizers for bestowing the honor of speaking upon me.

 

Also on:

Weekly Review: week ending 04 June

Here’s me returning to the weekly review habit.

I had a busy week, my second in a two-week business Tokyo trip. I found, and my colleagues helped me find, plenty of time for personal fun time.

The first bit of fun I found on Sunday. I wandered through various Tokyo districts recommended to me:

  • Yushima & Nezu, both near to Ueno
  • Ochanomizu & Bunkyo, both near Akihabara
  • Kagurazaka, near central Tokyo

A list rundown isn’t necessary as all five neighborhoods were quaint, quiet, and places I can see myself living. Next trip I’ll check out other options.

The biggest news has to be the trackball I found. It’s made by Elecom, a company lacking a great reputation. Yet they offer what’s essentially a wireless Microsoft Trackball Explorer with extra buttons!

Fixing my return flights is best described as nightmarish. Delta and SkyTeam better integrate their systems than American and the oneworld partners. Topping it off, when I stopped in at the Admirals Club at NRT they wouldn’t take my Alaska Airlines Boardroom membership for lounge access. I purchased my ticket on American. I had a connecting American flight. However, according to their rules I should only gain access if I’m flying on AA metal. The lounge staff was fantastic and granted me access anyway PLUS addressed my seat assignment issue.

I cleared out my expense backlog, long overdue.

I presented my IBM Watson Summit Japan talk about hybrid SOC & cloud technology for about 60 colleagues. I presented a proposal pitch to a customer. Both proved successful and interesting (for me, anyway).

Colleagues pulled me into new customer opportunities. My “dance card” is full. That is a good state of being for a consultant.

The Security Culture Conference in Oslo was the victim of this demand. I have to return to Tokyo the same week. Hard to be in two places at once when you’re not anywhere at all, let alone if they’re on opposite sides of the globe. I had a whole week of vacation around the event planned.

Seated next to me on the flight to ORD was a fun 4 year old girl who slept less than her mom did. She, the girl & not the mom, talked to the videos she watched and had trouble sitting still. The poor fellow in front of the girl received the abuse of pushing-feet-on-the-seat. I enjoyed the extra elbow room.

O’Hare is a miserable airport. It reminds me of a quote from “The Silence of the Lambs” movie I’ll paraphrase: “It’s like the elaboration of a bad joke”. It also reminds me of Zork: “You’re in a maze of twisty passages, all alike”. The Admirals Club lounge is old, crowded, and dirty. The staff is nice enough. The remodel cannot come quickly enough.

When I arrived in Detroit there were no Uber cars available. I took a taxi with a driver new to the city, a bad situation when dozing off constantly (me, not the driver).

Ending on a positive note, the weather is nice.

Also on: