BSides Austin 2018 has ended
Back To Schedule
Friday, March 9 • 2:30pm - 3:30pm
Enhancing SOC1 by using feedback loops

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Cloud enabled Security Operations Center level 1 workflows can be enhanced
by using security outcome data. This feedback becomes a force multiplier that
helps experience analyst to create more accurate threat profiles and the
possibility of predicting new attack campaigns. The proposed approach is based
on crowdsource operator feedback. This crowdsourced operator feedback is possible by creating a global reinforcement crowdsourced learning engine.

The objective is to provide defenders/operators with the ability to compare their
local responses/feedback about threats and malicious campaigns against global data by providing a distributed learning network with open standards that reflect patterns and behaviors of experienced defenders/operators. These feedback loops can then be used to train algorithms and implement automated functions that will enhance less experience SOC operators.


Rod Soto

Rod SotoDirector of Security Research at JASK.AI. Joseph ZadehDirector of Data Science at JASK.AILonger Bios --> https://www.blackhat.com/eu-17/presenters/Rod-Soto.htmlhttps://www.blackhat.com/eu-17/presenters/Joseph-Zadeh.html

Friday March 9, 2018 2:30pm - 3:30pm CST
Big Tex Auditorium