Sign up to save your podcasts
Or
Share EP271 Can AI-Native MDR Actually Fix Your Broken SOC Workflows or Just Automate the Mess?
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
EP271 Can AI-Native MDR Actually Fix Your Broken SOC Workflows or Just Automate the Mess?
Guests:
- Eric Foster, CEO, Tenex.AI
- Bashar Abouseido, President, Tenex.AI
Topics:
- "10X SOC" sounds great. But for an organization stuck in "SIEM 1.0" with poor data quality and manual workflows, is "AI-native MDR" a "leapfrog" opportunity or a recipe for disaster?
- We've seen the rise of "Decoupled SIEM" and security data lakes. Does a "Modern SIEM" even need to exist if an MDR platform has an agentic layer doing the heavy lifting?
- You've argued for AI-native over AI-bolted-on. For an end user, what are the tangible differences of using "AI inside a legacy SIEM" versus using an "AI-native separate product"?
- What is the one task you thought AI would handle by now that still requires a senior human analyst to step in?
- If a CISO is using an AI MDR, "Mean Time to Detect" (MTTD) starts to look like a vanity metric because the machine is instant. What is the new golden metric for an AI-powered SOC? Is it "Time to Context," "Reduction in Human Toil," or something else?
- How do you help a skeptical SOC Manager—who has been burned by false positives for a decade—trust an autonomous agent to perform a "containment" action at 3:00 AM?
Resources:
- EP227 AI-Native MDR: Betting on the Future of Security Operations?
- EP10 SIEM Modernization? Is That a Thing?
- The original "10X" paper "Autonomic Security Operations: 10X Transformation of the Security Operations Center"
View all episodes
By Anton Chuvakin
4.8
3939 ratings
Guests:
- Eric Foster, CEO, Tenex.AI
- Bashar Abouseido, President, Tenex.AI
Topics:
- "10X SOC" sounds great. But for an organization stuck in "SIEM 1.0" with poor data quality and manual workflows, is "AI-native MDR" a "leapfrog" opportunity or a recipe for disaster?
- We've seen the rise of "Decoupled SIEM" and security data lakes. Does a "Modern SIEM" even need to exist if an MDR platform has an agentic layer doing the heavy lifting?
- You've argued for AI-native over AI-bolted-on. For an end user, what are the tangible differences of using "AI inside a legacy SIEM" versus using an "AI-native separate product"?
- What is the one task you thought AI would handle by now that still requires a senior human analyst to step in?
- If a CISO is using an AI MDR, "Mean Time to Detect" (MTTD) starts to look like a vanity metric because the machine is instant. What is the new golden metric for an AI-powered SOC? Is it "Time to Context," "Reduction in Human Toil," or something else?
- How do you help a skeptical SOC Manager—who has been burned by false positives for a decade—trust an autonomous agent to perform a "containment" action at 3:00 AM?
Resources:
- EP227 AI-Native MDR: Betting on the Future of Security Operations?
- EP10 SIEM Modernization? Is That a Thing?
- The original "10X" paper "Autonomic Security Operations: 10X Transformation of the Security Operations Center"
More shows like Cloud Security Podcast by Google
View all
WSJ Your Money Briefing
1,713 Listeners
WSJ What’s News
4,420 Listeners
Security Now (Audio)
2,011 Listeners
Risky Business
371 Listeners
CyberWire Daily
1,028 Listeners
NVIDIA AI Podcast
343 Listeners
Darknet Diaries
8,077 Listeners
Cybersecurity Today
175 Listeners
Practical AI
212 Listeners
Cloud Security Podcast
57 Listeners
Cybersecurity Headlines
139 Listeners
Huberman Lab
29,272 Listeners
The AI Daily Brief: Artificial Intelligence News and Analysis
688 Listeners
HBR On Leadership
170 Listeners
AI Security Podcast
9 Listeners