Skip to content
All about finance.TechnologyCybersecurityFinanceBusiness

Exploring the SOC: Stepping down from the lofty heights | Episode 3

Is the excessive usage of technical jargon and intricate components in the cybersecurity sector truly necessary? Or does the relentless push for more tools eventually become a heavy obstacle in our progress?

 and  Administrator
3 min read
Is the cybersecurity sector overburdened with excessive technical terminology and intricate...
Is the cybersecurity sector overburdened with excessive technical terminology and intricate components? Could simplification lead to a lighter workload, or is the continual accumulation of tools impeding progress?

Cybersecurity duo discusses the need for a more human-friendly industry in new podcast

Exploring the SOC: Stepping down from the lofty heights | Episode 3

Paul Ducklin, joined by David Emerson, the CTO and Head of Operations at a leading cybersecurity firm, delve into the importance of making the cybersecurity industry more accessible and less complex in their latest podcast titled "Tales from the SOC".

The conversation revolves around the question of whether the industry relies too heavily on specialized jargon and complex systems, potentially burdening businesses and individuals. The duo ponders whether the constant pursuit of "more tools, more tools" might be hindering rather than helping in ensuring cybersecurity.

If you encounter issues playing the podcast within your browser, you can find an alternative listening option here.

Find the podcast in your favorite app

You can subscribe to "Tales from the SOC" on various platforms such as Apple Podcasts, Audible, Spotify, Podbean, or by using the RSS feed. Alternatively, you can download this specific episode as an MP3 file and listen offline in any audio or video player.

Read the transcript

[FX: PHONE DIALS]

[FX: PHONE RINGS, PICKS UP]

ETHEREAL VOICE. Hello, caller.

Prepare for "Tales from the SOC".

[FX: DRAMATIC CHORD]

DUCK. Welcome back to "Tales from the SOC," dear listeners!

I am Paul Ducklin, and I am joined, once again, by David Emerson, who is the CTO and Head of Operations at our esteemed firm.

David, good afternoon for you, evening for me.

DAVID. Thank you, good to be here again.

DUCK. David, this week, I believe you would like to discuss the notion of cybersecurity coming down from the ivory tower. Would you like to elaborate on that?

DAVID. It's essential for several reasons. Perhaps I more frequently see it as 'not ascending the ivory tower in the first place.'

The simple fact is that much of cybersecurity is far more practical and less compartmentalized than it appears within the cybersecurity industry, and than it is perceived by those outside the industry.

Many highly pragmatic practices concerning technology and managing systems are vastly underestimated, leading to an overreliance on esoteric practices within the industry that may not be capable of offering a comprehensive defense against an asymmetric threat.

DUCK. To summarize, one could argue that the cybersecurity industry has become fixated on 'shiny new objects,' causing attention and budget to be diverted from getting the basics right.

This distraction might even lead to neglecting things that could have been done years ago but have not been done for one reason or another.

DAVID. Absolutely.

For instance, consider the recent CrowdStrike incident.

[LAUGHTER]

But it serves as an illustrative example.

This incident didn't necessitate a bevy of reverse engineers; rather, what was essential was having a person situated in front of a computer, executing remediation instructions - a role that may not traditionally fall within the remit of a cybersecurity professional.

DUCK. It seems that cybersecurity is best approached as a culture rather than a collection of specialized tools.

DAVID. Exactly.

We seem to have lost some of the flexibility that perhaps we enjoyed 10 or 20 years ago by assuming that automated tools that gather petabytes of telemetry, make instantaneous decisions, and push them back into the cloud are the solution to everything.

When they fail, as they inevitably do, someone must retrieve the recovery keys from a safe and contact someone who is not overly familiar with BitLocker.

This highlights the importance of adopting a culture that encompasses both technical know-how and practical, everyday skills.

DUCK. So, while specialized cybersecurity tools have their advantages, they should not serve as a panacea.

The focus should be on developing a flexible culture that is not solely reliant on the latest technology, but also emphasizes practical solutions, testing, and a strong cybersecurity posture.

We hope you enjoy this week's episode of "Tales from the SOC." If you have any thoughts or questions, feel free to share them with us!

You can reach our loud and opinionated columnist, Amos the Armadillo, at Amos@our website. Alternatively, visit our blog, our website.com/blog, for community-centered articles on everything from HTTPS to VPNs.

Thank you for listening, and until next time, stay secure!

  1. In their latest podcast, titled "Tales from the SOC," Paul Ducklin and David Emerson, who is the CTO and Head of Operations at a leading cybersecurity firm, discussed the need for a more accessible and less complex cybersecurity industry, questioning whether the overreliance on specialized jargon and complex systems burdens businesses and individuals.
  2. The conversation in the podcast also highlighted the potential drawbacks of the current focus in the cybersecurity industry on "more tools, more tools," suggesting that this approach might be hindering rather than helping in ensuring cybersecurity, and instead advocated for a more practical and flexible culture that encompasses both technical knowledge and everyday skills, and doesn't solely rely on the latest technology.

Read also:

    Related

    Latest