Leaders and security experts from Splunk will present the newest insights on reimagining the SOC of the future, growing and evolving your threat hunting program, and strategies for effective detection engineering. Don't forget to add these to sessions to your schedules.
Black Hat Session Speakers
Powering the SOC of the Future to Tackle Emerging Threats
Speaker: David Dalling, Group Vice President, Global Security Strategists, Splunk
Wednesday, August 7 | 10:55AM - 11:15AM PT | Mandalay Bay L
As cyber threats evolve in complexity and frequency, security operations centers (SOCs) must adapt to remain effective. This talk delves into the future of SOCs, exploring the transformational strategies and technologies needed to enhance threat detection, investigation, and response maximizing ai and Detection and Response tools. Attendees will gain insight into building a proactive, resilient SOC capable of addressing the dynamic challenges of the modern threat landscape.
Arsenal Session | Splunk Attack Range
Speaker: Rod Soto, Senior Principal Threat Researcher
Wednesday, August 7 | 10:10AM - 11:20AM | Business Hall - Arsenal Station 6
The Splunk Attack range is an open-source framework that provides different tools to allow security analysts to test networks, hosts, and applications against several known adversarial TTPs based on Mitre ATT&CK framework. The Splunk Attack Range framework allows the security analyst to quickly and repeatedly replicate and generate data as close to "ground truth" as possible, in a format that allows the creation of detections, investigations, knowledge objects, and SOAR playbooks. The Splunk Attack Ranges contain adversarial simulation engines (Operator, Atomic Red Team), target machines, and a Splunk server receiving attack data which can be downloaded and used for free and provides operators with tools to simulate attacks and create detections and defense artifacts.
AI Summit Speaking Sessions
Splunk will be a VisionAIries Partner sponsor of Black Hat’s AI Summit. If you’re attending the AI Summit, be sure to visit us at our table top, and join our Panel or Roundtable.
Integrating AI with Cybersecurity Strategy - Navigating the Next Five Years
Panelist: Hao Yang, Vice President, Artificial Intelligence
Tuesday, August 6 | 1:05PM - 1:45PM | South Pacific F, Level 0
Topics:
- Forecast AI's trajectory in cybersecurity over the next five years.
- Proactive planning for the next five years in cybersecurity strategy
- Navigate the intersection of AI technologies and cyber defense
- Assess the impact of rapid AI evolution on long-term security planning, compliance challenges
Moderator: Seth Dobrin, CEO of Qantm AI and former Chief AI officer of IBM
Co-Panelists:
- Michael Thiessmeier, Executive Director U.S National AI and Cybersecurity ISAO
- Robert (Bob) Flores, CEO of Applicology and Senior Partner at OODA LLC
- Guillermo Christensen, National Security Lawyer, Partner, K&L Gates
- Jennifer Gold, President and Board Chair of NY Metro InfraGard, a founding member of the U.S. National AI and Cybersecurity ISAO
Roundtable: How can AI transform and power the SOC of the future
Speakers: Hao Yang, Vice President, Artificial Intelligence and Shail Talati, Senior Director, Product Management Enterprise Security
Tuesday, August 6 | 11:00AM - 12:00PM
Traditional SOC operations face challenges, including an overwhelming volume of data, alert fatigue, and distinguishing true threats from false positives. These challenges lead to inefficiencies and vulnerabilities in an organization's security posture. Enter AI, and specifically GenAI -- a game-changer to revolutionize SOC operations. GenAI can improve threat detection, automate routine tasks, and provide deeper insights at scale. However, integrating GenAI into SOC is not without hurdles - data privacy, data quality, and new threat vectors. We will explore how to overcome these challenges and transform to an AI-centered SOC operation.
This roundtable is by invitation only through AI Summit.