March 28, 2024
Monad Community Bytes - March 2024
Monad Community Bytes
Welcome to the March edition of Monad Community Bytes! Spring has sprung 🌷 and there's been a few exciting developments here at Monad that we can't wait to share externally! While we continue to pave the way for a more data-driven security approach, let's take a look at what else is going on in our space recently.
Data Engineering for Cybersecurity Blog Series!
We recently embarked on a journey to dive into the data challenges that security teams face today and how adopting data engineering technologies and practices can help security programs become more efficient, cost-effective, and ultimately, more secure. In the first part of the series, we dive into 22 security-relevant data sources and analyze the intricacies of handling and making the most of security data.
Rippling's Security Data Lakehouse
Traditional SIEMs pose many challenges including astronomical costs and performance issues at massive scale. If you've worked in security operations, you've felt the pain. Not only has this led to the wave of "next-gen SIEMs", but security teams are also taking matters into their own hands with an influx of them building their own security platforms.
In this blog series, Rippling details how they're leveraging AWS, Snowflake, and Terraform for their security data lakehouse. They also dive into their log ingestion architecture, how they've built for resiliency, and they provide a cost breakdown.
Data-Driven Storytelling for CISOs
Over the past several years, the nature of CISO role has evolved significantly due to the SEC data breach reporting requirements, legal charges against former SolarWinds and Uber CISO, adoption of GenAI, and a host of emerging threats.
As a result, CISOs are increasingly engaging in board discussions and providing insights on the organization's security posture. The problem with this is that many board members lack the technical expertise to grasp the complexities of security. This causes a disconnect compared to other departments like finance and legal in terms of well-defined metrics and key performance indicators (KPIs).
In this Forbes article, Paul Ponzeka, CTO @ Abacus Group, highlights the importance of data-driven storytelling for CISO and practical guidance on leveraging data to better communicate and seek alignment with the board and other C-level colleagues.
10 Security Data Management Tips
The more security relies on data and analysis, the greater the need to effectively manage, curate, and safeguard security data while keeping costs under control.
This demands technical expertise as well as thoughtful planning and execution at both tactical and strategic levels. This DarkReading article provides tactical guidance for security data management and how to maximize the value of an organization's security data with minimal investment.
BSidesSF and RSAC!
Will you be at BSidesSF and/or RSAC this year? Drop us a note at community@monad.com! We'd love to connect!
Have Feedback?
If you have any feedback on how to make these monthly digests more valuable or relevant to you, please reach out! Our goal is to provide you with actionable insights and guidance without any marketing fluff!
Related content
