SecOps Weekly

Fundamentals of building AI agent workflows in the SOC

In this episode, Jimmy Astle, Director of Machine Learning, and Principal Machine Learning Engineer Rafael Del Rey will share how Red Canary uses autonomous agents to advance SOC operations. They'll discuss testing concepts with AI agents, transitioning to deterministic coding for efficiency, and the idea of agents as flows. Together, they'll brainstorm a hypothetical agent live, showcasing AI’s transformative potential in the security space.

Read More

How SOCs defend against AI-powered attacks: Threats, signals, controls

Principal Security Researcher Brian Donohue and Caleb Fogleman, Senior Data Engineer, will dive into the risks of adversaries abusing organizations' AI systems and how security teams can safeguard them from intrusion. They'll explore how attackers might leverage AI in their campaigns and offer strategies for defending against AI-powered threats.

Read More

Measuring impact: The true ROI of AI in the SOC

Join Alex Spiliotes, Director of Product Marketing, and Jimmy Astle, Senior Director of Validation and Data Science, as they provide an executive framework for defining AI's value within your SOC, impacting metrics like MTTR and overall time saved. They'll equip you with strategies to establish clear goals before AI implementation, ensuring your initiatives drive tangible outcomes like faster time to signal, repeatable investigations, and cost-aware scaling for maximum operational efficiency and accuracy.

Read More

Build vs. buy for AI in the SOC: speed, control, and value

Join Keith McCammon and Mary Writz, Senior Vice President of Product Management, as they explore the challenges tech leaders face when choosing between building in-house AI capabilities or buying solutions in a fast-changing market. They’ll cover hiring strategies, scaling capabilities, addressing organizational skepticism, and avoiding common pitfalls like rising costs and ineffective solutions.

Read More