SHOW NOTES

Mary Writz, Senior VP of Product Management at Red Canary, joins Keith McCammon, Red Canary co founder, to discuss strategic approaches to implementing AI in security operations. Together they explore the build vs. buy decision framework for AI investments, emphasizing that building in-house makes sense only for strategic, custom requirements specific to your business and data. The conversation covers Red Canary’s journey with agentic AI, highlighting the unprecedented speed of development where capabilities that would traditionally take 9-12 months are now delivered faster than ever.

Mary shares insights on managing both internal team concerns and customer trust around AI adoption, emphasizing the importance of transparency and maintaining core outcomes like never missing threats while becoming faster and less noisy. She discusses practical AI implementations customers are building, such as documentation scribes and incident reporting tools, and shares Red Canary’s recent breakthrough in dynamic threat customization based on customer context. The discussion concludes with considerations for vendor selection in the rapidly evolving AI landscape and announces the webinar series’ upcoming focus shift to security operations.

Timestamps:

• 01:02 – Welcome to Red Canary Office Hours!
• 02:09 – Build vs. buy for AI in the SOC: speed, control, and value
• 09:39 – When to build vs. when to buy
• 16:11 – What surprises to expect
• 24:05 – If we could do it all over again, what would we do differently?
• 32:41 – Office Hours is now SecOps Weekly!