Rabbit Food Podcast Por Nathan Stacey arte de portada

Rabbit Food

Rabbit Food

De: Nathan Stacey
Escúchala gratis

Acerca de esta escucha

Hosted by Nathan Stacey. This page features videos from a bunch of Elasticsearch experts talking Elasticsearch and all of the IT tech surrounding it. If you like the videos on this page, like the page and help us promote the content! #elastic #elasticsearch #kibana #elkNathan Stacey
Episodios
  • The SOC Guru, Heidi Gerken, talking about why she bet her career on Elastic
    Aug 23 2024

    Heidi has seen many Security Operations Centers (SOC) over her career. She has seen many SIEM tools and many SOC cultures. She describes why she chose Elastic and sees the future in Elastic.

    Nathan Stacey and Heidi discuss the evolution of security operations centers (SOCs) and the role of Elastic in modernizing the SOC. They talk about the transition from network operations centers (NOCs) to SOCs and the importance of integrating security and network teams. They also highlight the value of bringing in large quantities of data and the role of AI in analyzing and correlating that data. They discuss the Elastic Common Schema and its impact on data normalization and correlation. Overall, they emphasize the open and agile nature of Elastic in meeting the evolving needs of SOCs.

    Takeaways:

    -SOCs have evolved from network operations centers (NOCs) and now require the integration of security and network teams.

    -Bringing in large quantities of data and leveraging AI can provide a more comprehensive and holistic view of security incidents.

    -The Elastic Common Schema enables data normalization and correlation across different log sources.

    -Elastic's open and agile approach allows for customer-driven development and the ability to meet the evolving needs of SOCs.

    Sound Bites:

    "SOCs are transitioning and moving towards the new, and Elastic is part of that new."

    "The goal is to bring in all the data to have a full picture and enable effective security operations."

    "Elastic allows for a more efficient and effective SOC by providing an event rendered view and leveraging AI for analysis."

    00:00 Heidi Gerken's Background in Security Operations Centers

    03:00 The Transition from NOCs to SOCs

    07:02 Challenges of Managing Large Data Sets in SOCs

    13:07 The Role of AI and Machine Learning in SOC Efficiency

    28:03 The Importance of Elastic Common Schema in SOC Operations

    Más Menos
    37 m
  • Satellite Cybersecurity with Paul Vout
    Aug 6 2024

    Paul Vout discusses his experience participating in a SatCom cyber exercise focused on satellite-based cyber threats and techniques. The exercise aimed to simulate attacks on a real satellite called Moonlighter, with a focus on directional control and energy consumption. Paul highlights the importance of precise coordination of cameras and solar panels on satellites and the potential vulnerabilities in these areas. He also emphasizes the need for a structured process and framework in OT cyber exercises to guide analysts and improve training. Overall, the exercise provided valuable insights into securing satellite systems and can inform the cybersecurity practices in other OT domains.

    Watch the full video here:Youtube: https://youtu.be/hEAusX3nkHI

    Keywords

    SatCom, cyber exercise, satellite, directional control, energy consumption, OT cyber, supply chain, process, framework, training, elastic, elasticsearch, red team, blue team

    Takeaways

    SatCom cyber exercises provide valuable insights into securing satellite systems and can inform cybersecurity practices in other OT domains.

    The directional control and energy consumption of satellites are critical areas to focus on in SatCom cyber exercises.

    A structured process and framework are essential in OT cyber exercises to guide analysts and improve training.

    Understanding the supply chain and the specific components of satellite systems is crucial for effective cybersecurity.

    Elastic's ability to ingest and interpret multiple sources of data makes it a valuable tool in SatCom cyber exercises.

    Sound Bites

    "Directional control of a satellite is extremely important, as is the manipulation of power generation and consumption."

    "Satellite cybersecurity requires a focus on specific satellite components and understanding the supply chain."

    "A structured process and framework in OT cyber exercises can improve training and guide analysts."

    Chapters

    00:00 Introduction to the SatCom Cyber Exercise

    03:49 The Importance of Directional Control and Energy Consumption

    10:21 The Value of Focusing on SatCom Cybersecurity

    18:22 Lessons Learned and Best Practices for OT Cyber Exercises

    26:22 The Role of Elastic in Analyzing Satellite Telemetry Data

    Más Menos
    32 m
  • Elastic Sizing and Performance Tuning Part 1 with Michael Young
    Aug 6 2024
    • Nathan Stacey interviews Michael Young about sizing in Elastic. They discuss the concept of distributed systems, the value of data tiering, and the challenges of split brain scenarios. They also touch on the different tiers in Elastic (hot, warm, cold, and frozen) and how they impact performance and cost.
    • The conversation provides insights into the importance of understanding the resources and requirements of an Elastic cluster to optimize its performance.Where to see this video:


    • Youtube of this full video as well as the channel with the rest of our videoshttps://youtu.be/ND0mn6Xsu3E

    • Keywords

      • Elastic, sizing, distributed systems, data tiering, split brain, hot tier, warm tier, cold tier, frozen tier, performance, cost optimization, elasticsearch, tuning


      Takeaways

      • Understanding the resources and requirements of an Elastic cluster is crucial for optimizing its performance.

      • Data tiering in Elastic allows for the efficient management of data based on its value and performance needs.

      • Split brain scenarios can occur in distributed systems and can lead to conflicts and inconsistencies in data.

      • Elastic offers different tiers (hot, warm, cold, and frozen) to accommodate different performance and cost requirements.

      • Proper sizing and configuration of an Elastic cluster can ensure efficient data management and high performance.


      Quotes

      • "Enabling people to think about the things that matter with sizing so they could be more informed."

      • "A few tweaks here and there changes that cluster from ho-hum to crazy fast."

      • "Elastic can actually get down to single-digit millisecond response times."

      Chapters

      00:00 Introduction and Background

      02:18 The Importance of Sizing

      08:57 Overview of the Series

      11:38 Data Tiering in Elastic

      31:42 Understanding Split Brain Scenarios

    Más Menos
    43 m
Todavía no hay opiniones