Security Information & Event Management (SIEM) , Security Operations , Security Operations Center (SOC)
Orchestration and Automation: The New 'Must-Haves'
Splunk's Ryan Kovar and Christine Vanderpool of FCC on Maximizing Emerging TechOrchestration and automation have shifted from "nice to have" to "must-have" in the enterprise - particularly post-breach, says Christine Vanderpool, CISO at Florida Crystals Corp. She and Splunk's Ryan Kovar share insights and tips on how to get maximum value from these emerging technologies.
In a video interview with Information Security Media Group, Kovar and Vanderpool discuss:
- Misconceptions about orchestration and automation;
- How to address resource gaps;
- Potential pitfalls to avoid.
Kovar, with over 20 years of experience in cyber, has done everything from pulling miles of CAT5 cable on an aircraft carrier to learning that he didn't want to be a malware RE. Most recently, he worked at the Defense Advanced Research Projects Agency, or DARPA, on a team dedicated to detecting and mitigating advanced threats. Kovar then became a distinguished security strategist at Splunk, where he teaches hunting, attempts practical security research, and solves fun problems for folks around the world.
Vanderpool, CISO and vice president of IT strategy, architecture and security, has been at FCC for three years. During that time, she worked on building out the cybersecurity program based on the NIST Framework, focusing on implementing capabilities that help FCC/ASR identify, protect against, detect, respond to and recover from threats. She is now focusing on building out the company's IT strategy for the next three years and beyond, including strong vendor relationships, alignment with architecture principles and engaging communications. She has experience in building such strategies from her prior roles with Molson Coors and Kaiser Permanente.