Revolutionizing the SOC for the future threat landscape

Speaker: Gary Steele, Executive Vice President, General Manager, Splunk

Wednesday, May 8 | 11:10AM PT

Could you have imagined today’s SOC five years ago? AI was probably part of it, but nobody foresaw the rise of Generative AI. To succeed now and stay resilient amidst tomorrow’s challenges, it’s time to revolutionize the SOC. In this session, we’ll discuss building a future-proof strategy for the evolving cyber landscape, combining a vision of possibility while staying grounded in reality.

I Screwed Up Threat Hunting a Decade Ago and Now We're Fixing it With PEAK

Speaker: David Bianco, Security Strategist, SURGe, Splunk

Monday, May 6 | 8:30AM PT 

The Sqrrl Threat Hunting Cycle was created in 2015, one of the most popular hunting frameworks in the world. This session will explain the screw-ups during the creation and how the PEAK framework fixes things by incorporating almost a decade of additional lessons and experience. Stop focusing on incidents and detections. Come find out how to get even more out of the hunting program than thought possible.

A Blueprint for Detection Engineering: Tools, Processes, and Metrics 
Speakers: Jose Hernandez, Director Splunk Threat Research Team, Splunk & Eric McGinnis, Senior Threat Researcher, Splunk

Thursday, May 9 | 9:40AM PT

In the evolving landscape of cyber threats, effective detection engineering is key to safeguarding digital assets. This session will zero in on the blend of open source tools and methodologies that define state-of-the-art detection engineering – from ideation to action, measuring success through critical metrics, threat actor coverage, emerging threats, and of course MITRE ATT&CK coverage.