Published in

Anton on Security

Dec 19, 2019

6 min read

Security Correlation Then and Now: A Sad Truth About SIEM

We all know David Bianco Pyramid of Pain, a classic from 2013. The focus of this famous visual is on indicators that you “latch onto” in your detection activities. This post will reveal a related mystery connected to SIEM detection evolution and its current state. So, yeah, this is another way of saying that a very small number of people are perhaps very passionate about it …

But who am I kidding? I plan to present a dangerously long rant about the state of detection content today. So, yes, of course there will be jokes, but…

--

More from Anton on Security

A new start for my security blog. Also see our podcast at bit.ly/CloudSecPodcast

Read more from Anton on Security

Recommended from Medium

Chris McNab

in

AlphaSOC

Supercharge Your SOC

Salman Ahmed

Vulnhub: Gigachad Walkthrough

Anton Chuvakin

in

Anton on Security

Anton’s Security Blog Quarterly Q2 2021

Kimberly Melton

in

Hoodoo Digital

Is AEM Susceptible to log4shell?

Jeanine Kinnard

{UPDATE} Furious F3 Racing Hack Free Resources Generator

MultiPad Official

How to participate in MultiPad IDO

airdrops lord

GameInfinity Airdrop

Anton Chuvakin

in

Anton on Security

Detection as Code? No, Detection as COOKING!

About Help Terms Privacy

Get the Medium app

Anton Chuvakin

Anton Chuvakin

See www.chuvakin.org

More from Medium

Anton Chuvakin

in

Anton on Security

How to Measure Threat Detection Quality for an Organization?

Richard de Vries

in

Tales from a Security Professional

Are you ready to conduct digital forensic investigations?

Digital forensic investigation is about proving beyond doubt what happened.

Michael Hidalgo

Thoughts on creating a Cyber Threat Intelligence Program from scratch

Chris Parkerson

in

Adobe Tech Blog

Building our Security Coordination Center (SCC) Hunting Program

Help
Status
Writers
Blog
Careers
Privacy
Terms
About
Knowable