Oct 2Ten Reasons to Bring Your Own Snowflake and One to Use Your Vendor’sWhen choosing a cybersecurity solution that is powered by Snowflake, you have an important decision to make: whose Snowflake do you use? This isn’t a question with traditional SaaS products. They run on custom backends that the vendor manages for performance and reliability. …Cybersecurity9 min readCybersecurity9 min read
Published inSnowflake·Sep 1Normalize and Enrich Streaming Security Data in Snowflake with Dynamic TablesSnowflake is commonly used for searching and analyzing security data, but what about all the upstream work needed to prepare that data for effective threat detection and response? Most of that work tends to be done in stream processing solutions like Spark, Flink or Lambda. But that introduces complexity and…Snowflake4 min readSnowflake4 min read
Oct 17, 2022Move faster with a better map.Your security team can move faster, it just needs a better map. Engineering teams talk about “velocity” in a way that security teams rarely do. Improving MTTD and MTTR means reacting quicker but that’s not forward motion. …Cybersecurity2 min readCybersecurity2 min read
Oct 3, 2022Why Your Security Data Lake Project Will SUCCEED!The incredible pace of innovation in cloud data platform technology has brought security data lakes back into the spotlight. Security teams are increasingly moving away from standalone SIEMs towards using the same platform as the rest of the business for cost-effective storage and analytics at scale. But is generic big…Cybersecurity7 min readCybersecurity7 min read
Jan 17, 2022Watch Security Data Lakes Branch Out in 2022Having transformed threat detection and response, this year security data lakes will branch out to the rest of the enterprise security program. About last year’s prediction Last January I wrote that 2021 would be the year that security data lakes go mainstream. Two trends were colliding in a big way: enterprises getting comfortable with…Cybersecurity5 min readCybersecurity5 min read
Jul 7, 2021The shortest XDR definitionAsk any Frenchman and they’ll tell you that Champagne Only Comes From Champagne. Everything else is just sparkling wine. In cybersecurity, unfortunately, we don’t have nearly as much clarity on our definitions. Case in point is XDR, possibly the hottest category in cyber. Vendors across the industry are adopting the…Cybersecurity4 min readCybersecurity4 min read
Published inGeek Culture·Jun 28, 2021These common data silos are driving security data lake adoptionHere’s a term that cybersecurity practitioners should adopt from the analytics industry: “data silo”. That’s anywhere that data is left behind and not collected to a central source of truth. Silos make it hard to mine data for insights and busting them is a big part of data engineering. …Cybersecurity5 min readCybersecurity5 min read
Published inSnowflake·Jun 21, 2021Snowflake Summit Recap for Cybersecurity VendorsThis month’s Snowflake Summit conference was a “before and after” watershed moment for Snowflake’s role in cybersecurity. Across several recorded sessions, technical features with impressive performance metrics were demonstrated on security log data. That’s no coincidence. …Security Analytics11 min readSecurity Analytics11 min read
Published inThe Startup·Jan 25, 2021Snowflake’s Humble Role in the New Security StackAs security data lakes become established as best practice and The Great Splunkbundling accelerates, what will be the role of data platforms like Snowflake? The new security stack won’t look like the vertically integrated SIEMs of the past. …Security Analytics4 min readSecurity Analytics4 min read
Published inDigital Diplomacy·Jan 4, 2021The Year Security Data Lakes Go MainstreamLast January, I predicted that 2020 would be The Year of the Security Platform. Did that end up happening? And what should we expect for 2021? 2020: Many integrations, few actual platforms The year was packed with partnership announcements aimed at consolidating security solutions into a cohesive stack. …Security Data Lake5 min readSecurity Data Lake5 min read
