Sign up to save your podcasts
Or
Share Automating Threat Intelligence Using Airflow with Karan Alang
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Automating Threat Intelligence Using Airflow with Karan Alang
In this episode, Karan Alang, Principal Software Engineer at Versa Networks, joins the conversation to discuss how Airflow can be used to automate threat intelligence in modern cybersecurity environments. He explains the growing scale of cloud computing, the profitability of hacking and the shortage of SOC analysts. Karan also outlines a novel architecture that combines Airflow, XDR, graph databases and LLMs to orchestrate automated threat detection and response.
Key Takeaways:
00:00 Introduction.
05:00 Organizations face massive log volumes and a shortage of SOC analysts.
07:00 The solution integrates Airflow, XDR, Neo4j graph databases and LLMs into one architecture.
08:00 MITRE ATT&CK provides a global framework for mapping tactics and techniques.
11:00 Airflow acts as the orchestration backbone for ingestion graph transformation and LLM workflows.
13:00 Graph databases provide a full relationship view of attackers’ systems and entities.
14:00 LLMs automate mapping activity to MITRE ATT&CK and assign explainable risk scores.
17:00 Traditional signature-based detection allows lateral movement and exfiltration before teams can react.
18:00 End-to-end automation is essential to mitigating modern cybersecurity threats.
20:00 Future opportunities include deeper LLM integration as first-class citizens within Airflow.
Resources Mentioned:
Karan Alang
https://www.linkedin.com/in/karan-alang-4173437
Versa Networks | LinkedIn
https://www.linkedin.com/company/versa-networks
Versa Networks | Website
https://versa-networks.com
Google Cloud Composer (Managed Airflow on GCP)
https://cloud.google.com/composer
Microsoft Defender XDR
https://www.microsoft.com/es-es/security/business/siem-and-xdr/microsoft-defender-xdr
Neo4j (Graph Database)
https://neo4j.com
MITRE ATT&CK Framework
https://attack.mitre.org
Thanks for listening to “The Data Flowcast: Mastering Apache Airflow® for Data Engineering and AI.” If you enjoyed this episode, please leave a 5-star review to help get the word out about the show. And be sure to subscribe so you never miss any of the insightful conversations.
#AI #Automation #Airflow #MachineLearning
View all episodes
By Astronomer
5
2020 ratings
In this episode, Karan Alang, Principal Software Engineer at Versa Networks, joins the conversation to discuss how Airflow can be used to automate threat intelligence in modern cybersecurity environments. He explains the growing scale of cloud computing, the profitability of hacking and the shortage of SOC analysts. Karan also outlines a novel architecture that combines Airflow, XDR, graph databases and LLMs to orchestrate automated threat detection and response.
Key Takeaways:
00:00 Introduction.
05:00 Organizations face massive log volumes and a shortage of SOC analysts.
07:00 The solution integrates Airflow, XDR, Neo4j graph databases and LLMs into one architecture.
08:00 MITRE ATT&CK provides a global framework for mapping tactics and techniques.
11:00 Airflow acts as the orchestration backbone for ingestion graph transformation and LLM workflows.
13:00 Graph databases provide a full relationship view of attackers’ systems and entities.
14:00 LLMs automate mapping activity to MITRE ATT&CK and assign explainable risk scores.
17:00 Traditional signature-based detection allows lateral movement and exfiltration before teams can react.
18:00 End-to-end automation is essential to mitigating modern cybersecurity threats.
20:00 Future opportunities include deeper LLM integration as first-class citizens within Airflow.
Resources Mentioned:
Karan Alang
https://www.linkedin.com/in/karan-alang-4173437
Versa Networks | LinkedIn
https://www.linkedin.com/company/versa-networks
Versa Networks | Website
https://versa-networks.com
Google Cloud Composer (Managed Airflow on GCP)
https://cloud.google.com/composer
Microsoft Defender XDR
https://www.microsoft.com/es-es/security/business/siem-and-xdr/microsoft-defender-xdr
Neo4j (Graph Database)
https://neo4j.com
MITRE ATT&CK Framework
https://attack.mitre.org
Thanks for listening to “The Data Flowcast: Mastering Apache Airflow® for Data Engineering and AI.” If you enjoyed this episode, please leave a 5-star review to help get the word out about the show. And be sure to subscribe so you never miss any of the insightful conversations.
#AI #Automation #Airflow #MachineLearning
More shows like The Data Flowcast: Mastering Apache Airflow ® for Data Engineering and AI
View all
Freakonomics Radio
32,240 Listeners
The Joe Rogan Experience
229,603 Listeners
The Twenty Minute VC (20VC): Venture Capital | Startup Funding | The Pitch
543 Listeners
Software Engineering Daily
631 Listeners
Data Engineering Podcast
145 Listeners
Masters of Scale
3,989 Listeners
DevOps Paradox
25 Listeners
The Real Python Podcast
140 Listeners
All-In with Chamath, Jason, Sacks & Friedberg
10,242 Listeners
SmartLess
58,552 Listeners
Hard Fork
5,597 Listeners
The Data Stack Show
13 Listeners
The Data Engineering Show
9 Listeners
The AWS Developers Podcast
26 Listeners
The Economics Show
149 Listeners