Category: Media

  • AI can help the industry finally get SOC automation right

    AI can help the industry finally get SOC automation right

    in

    Andesite’s Chief Product Officer William MacMillan writes about how “despite massive investment in tools and technologies, many SOCs still find themselves overwhelmed by the very chaos they aim to control.” “Analysts are drowning in data, jumping between disconnected tools, and trying to make sense of endless alerts. The result? An epidemic of burnout among the talented…

  • The Current AI Revolution Will (Finally) Transform Your SOC

    The Current AI Revolution Will (Finally) Transform Your SOC

    in

    Alex, Thaman, Our Chief Technology Officer writes about the effects of AI on the cybersecurity stack. Artificial intelligence (AI) is profoundly transforming cybersecurity, reimagining detection through remediation. While AI’s value across cybersecurity workflows has been inconsistent, recent breakthroughs in machine learning will significantly decrease organizational risk and become necessary in defense operations to keep up…

  • Analyst Burnout Is an Advanced Persistent Threat

    Analyst Burnout Is an Advanced Persistent Threat

    in

    On Dark Reading, Andesite’s Chief Product Officer William MacMillan writes about how for too long, cybersecurity analysts have been treated as mere cogs in a machine and it’s time to change that and revolutionize security operations. “In the battle against cyber threats, we’re losing our most vital asset: our people. While the industry fixates on…

  • A Framework for Human-AI Partnership in the SOC

    A Framework for Human-AI Partnership in the SOC

    in

    Andesite’s Chief Product Officer William MacMillan argues on SC Media that so far the attempts to automate the Security Operations Center (SOC) have failed. Almost 20 years since the rise of the SIEM, and 10 years after SOAR platforms first hit the market, SOCs are still struggling. Analysts are drowning in an “everywhere data” environment,…

  • On CISO Perspectives, Andesite’s CPO William MacMillan discusses the state of security automation

    On CISO Perspectives, Andesite’s CPO William MacMillan discusses the state of security automation

    in

    Rick Howard, N2K CyberWire’s Chief Analyst and Senior Fellow, turns over hosting duties of his podcast, CISO Perspectives, to William MacMillan, the Chief Product Officer at Andesite, to discuss the Cybersecurity First Principle of automation: current state and what happens now with AI as it applies to SOC Operations.

  • The Art of Intelligence

    The Art of Intelligence

    in

    Former CIA Officers Brian Carbaugh (Andesite’s CEO and co-founder), Dawn Meyerriecks, and Michael Morell partner with MasterClass to teach declassified techniques on how to assess risk, strengthen relationships, and get ahead in life and business. Skills so good, they’ve been kept secret, until now. What you’re about to read is not for civilians’ eyes. Until…

  • Microsoft-CrowdStrike’s Outage Heralds ‘Increased Vulnerabilities’ Period

    Microsoft-CrowdStrike’s Outage Heralds ‘Increased Vulnerabilities’ Period

    in

    A massive system outage disrupted systems around the world, grounding flights, disrupting health care, transport and logistics, banking services and critical infrastructure. The issue hit computers running Microsoft Windows operating system and CrowdStrike software. “CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts,” the company…

  • How the CrowdStrike outage carved out new opportunities for hackers

    How the CrowdStrike outage carved out new opportunities for hackers

    in

    On Nextgov/FCW, former U.S. officials and security practitioners are wondering how a defective CrowdStrike patch for Windows systems fell through the cracks and created more cascading security risks. CrowdStrike will likely survive and move forward, but, reputationally, it can’t afford another incident like this, said William MacMillan, a former CISO at the CIA. “The update…

  • Venture Beat: CrowdStrike’s IT outage makes it clear why cyber resilience matters

    Venture Beat: CrowdStrike’s IT outage makes it clear why cyber resilience matters

    in

    A misconfigured content update released by CrowdStrike late on Thursday inadvertently triggered worldwide outages across Microsoft Windows systems, taking many of the world’s most essential services offline. CrowdStrike was attempting to update content that their Falcon Sensor uses to perform real-time threat detection and endpoint protection by monitoring system activities that identify suspicious behavior to prevent cyber…

  • Start-Ups: 10 Tips for Navigating the Headwinds Against High-Growth

    Start-Ups: 10 Tips for Navigating the Headwinds Against High-Growth

    in

    If the last two years have taught our industry anything, it’s time to retire to “cybersecurity is recession-proof” colloquialism. Not only have vendors seen cuts and challenges that they didn’t even face in the 2000 and 2008 downturns – but even internal security teams and budgets have been reduced, and defenders have fewer resources against…