PinnedRocky DeStefanoTexas: Sapped EnergyUnderstatement of the week: The physical, mental, and emotional toll on Texans this week has been ridiculously high.Feb 19, 2021Feb 19, 2021
Rocky DeStefanoDetection Engineering — Future of LoggingIf there is interest in the coming weeks I’ll dedicate time to digging deeper into each of these areas (and more) to explore what…Aug 7, 2023Aug 7, 2023
Rocky DeStefanoWhy Optiv?I’ve repeatedly extolled the many virtues of my previous role and retain a deep admiration for that team and its mission. I am in awe of…Sep 13, 2021Sep 13, 2021
Rocky DeStefanoFive Keys to SOC SuccessHere are five keys to success in security operations as they were derived from my interviews with SOC team leaders over the last few…Apr 5, 2019Apr 5, 2019
Rocky DeStefanoDetection Confidence: A framework for successThe benefits of using a detection framework like MITRE ATT&CK exceeds even the noted 300% increase in production detection use cases.Mar 11, 2019Mar 11, 2019
Rocky DeStefanoCloud SIEM — Why all the fuss?Recently, I was asked my opinions about why newly announced products like Chronicle’s Backstory or Microsoft’s Azure Sentinel matter when…Mar 5, 20191Mar 5, 20191
Rocky DeStefanoSOC Analyst Survey: Initial SIEM ObservationsAs part of the continued analysis on the SOC Analyst Survey, I thought I’d post a few teasers to help illustrate and communicate the…Feb 27, 2019Feb 27, 2019
Rocky DeStefanoVisibleRisk SOC Analyst Survey: An OverviewIn Feb 2019, as part of my book research, rather than publish my own observations I initiated a survey to gain some additional perspective…Feb 27, 2019Feb 27, 2019