Author: Patricia Arancibia

  • AI can help the industry finally get SOC automation right

    AI can help the industry finally get SOC automation right

    in

    Andesite’s Chief Product Officer William MacMillan writes about how “despite massive investment in tools and technologies, many SOCs still find themselves overwhelmed by the very chaos they aim to control.” “Analysts are drowning in data, jumping between disconnected tools, and trying to make sense of endless alerts. The result? An epidemic of burnout among the talented…

  • Andesite Named Trusted Cloud Provider by Cloud Security Alliance

    Andesite Named Trusted Cloud Provider by Cloud Security Alliance

    in

    Andesite is proud to announce that it has earned the Trusted Cloud Provider trustmark from the Cloud Security Alliance (CSA). CSA is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and…

  • Analyst Burnout Is an Advanced Persistent Threat

    Analyst Burnout Is an Advanced Persistent Threat

    in

    On Dark Reading, Andesite’s Chief Product Officer William MacMillan writes about how for too long, cybersecurity analysts have been treated as mere cogs in a machine and it’s time to change that and revolutionize security operations. “In the battle against cyber threats, we’re losing our most vital asset: our people. While the industry fixates on…

  • A Framework for Human-AI Partnership in the SOC

    A Framework for Human-AI Partnership in the SOC

    in

    Andesite’s Chief Product Officer William MacMillan argues on SC Media that so far the attempts to automate the Security Operations Center (SOC) have failed. Almost 20 years since the rise of the SIEM, and 10 years after SOAR platforms first hit the market, SOCs are still struggling. Analysts are drowning in an “everywhere data” environment,…

  • The Importance of Team Culture in Startups, with Andesite’s CEO and co-founder Brian Carbaugh

    The Importance of Team Culture in Startups, with Andesite’s CEO and co-founder Brian Carbaugh

    in

    In this conversation, Brian Carbaugh, CEO and co-founder of Andesite, shares his unique journey from the CIA (and beore that the Marines!) to the world of cybersecurity. He discusses the challenges and rewards of being a founder, the importance of setting a positive tone for the team, and the necessity of resilience in a startup…

  • On CISO Perspectives, Andesite’s CPO William MacMillan discusses the state of security automation

    On CISO Perspectives, Andesite’s CPO William MacMillan discusses the state of security automation

    in

    Rick Howard, N2K CyberWire’s Chief Analyst and Senior Fellow, turns over hosting duties of his podcast, CISO Perspectives, to William MacMillan, the Chief Product Officer at Andesite, to discuss the Cybersecurity First Principle of automation: current state and what happens now with AI as it applies to SOC Operations.

  • Microsoft-CrowdStrike’s Outage Heralds ‘Increased Vulnerabilities’ Period

    Microsoft-CrowdStrike’s Outage Heralds ‘Increased Vulnerabilities’ Period

    in

    A massive system outage disrupted systems around the world, grounding flights, disrupting health care, transport and logistics, banking services and critical infrastructure. The issue hit computers running Microsoft Windows operating system and CrowdStrike software. “CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts,” the company…

  • How the CrowdStrike outage carved out new opportunities for hackers

    How the CrowdStrike outage carved out new opportunities for hackers

    in

    On Nextgov/FCW, former U.S. officials and security practitioners are wondering how a defective CrowdStrike patch for Windows systems fell through the cracks and created more cascading security risks. CrowdStrike will likely survive and move forward, but, reputationally, it can’t afford another incident like this, said William MacMillan, a former CISO at the CIA. “The update…

  • Venture Beat: CrowdStrike’s IT outage makes it clear why cyber resilience matters

    Venture Beat: CrowdStrike’s IT outage makes it clear why cyber resilience matters

    in

    A misconfigured content update released by CrowdStrike late on Thursday inadvertently triggered worldwide outages across Microsoft Windows systems, taking many of the world’s most essential services offline. CrowdStrike was attempting to update content that their Falcon Sensor uses to perform real-time threat detection and endpoint protection by monitoring system activities that identify suspicious behavior to prevent cyber…

  • Start-Ups: 10 Tips for Navigating the Headwinds Against High-Growth

    Start-Ups: 10 Tips for Navigating the Headwinds Against High-Growth

    in

    If the last two years have taught our industry anything, it’s time to retire to “cybersecurity is recession-proof” colloquialism. Not only have vendors seen cuts and challenges that they didn’t even face in the 2000 and 2008 downturns – but even internal security teams and budgets have been reduced, and defenders have fewer resources against…