Detection at Scale

Illumio's Erik Bloch on Getting Security Fundamentals Right Before Adding AI

Listen Later

In this episode of Detection at Scale, Jack speaks with Erik Bloch, VP of Security, Illumio, about why most security operations teams aren't ready for AI tools and what fundamental processes must be in place first. Erik challenges the industry's obsession with new technologies, sharing stories from his experience transforming underperforming security teams at major companies like Cisco, Salesforce, and Atlassian. 

His conversation with Jack explores how to measure what actually matters in security operations, from team capacity utilization to business outcome dispositions, and why proper ticketing systems and actionable metrics are prerequisites for any advanced tooling to be effective.

Topics discussed:

  • The importance of establishing fundamental processes like ticketing systems and metrics before implementing AI tools in security operations.
  • How to measure team capacity utilization and resource allocation to identify when security operations teams are operating beyond sustainable levels.
  • Why traditional security metrics like mean time to detect are often vanity metrics that don't provide actionable business intelligence.
  • The critical need for security leaders to communicate in business language with concrete data rather than anecdotal risk assessments.
  • How managed service providers will likely be the first to successfully adopt AI tools due to their standardized processes.
  • The challenge of proving AI tool effectiveness when most organizations lack baseline metrics to measure improvement against established benchmarks.
  • Why security teams gravitate toward building custom tools and how this impacts their approach to adopting commercial AI solutions.
  • The role of MCP in enabling security teams to create their own agents and integrate multiple tools.
  • How AI should focus on eliminating routine tasks like phishing email analysis rather than trying to catch advanced persistent threats.
  • The framework for implementing AI tools by starting with business outcomes, defining metrics, identifying capabilities, and then inserting automation. 

    • Listen to more episodes:

    Apple 

    Spotify 

    YouTube

    Website

    ...more
    View all episodesView all episodes
    Download on the App Store
    Detection at ScaleBy Panther Labs
    • 5
    • 5
    • 5
    • 5
    • 5

    5

    11 ratings

    More shows like Detection at Scale

    View all
    Risky Business by Patrick Gray

    Risky Business

    373 Listeners

    SpyCast by SpyCast

    SpyCast

    1,532 Listeners

    SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

    SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

    653 Listeners

    The Defender's Advantage Podcast by Mandiant

    The Defender's Advantage Podcast

    33 Listeners

    Science Vs by Spotify Studios

    Science Vs

    12,222 Listeners

    Smashing Security by Graham Cluley

    Smashing Security

    318 Listeners

    Darknet Diaries by Jack Rhysider

    Darknet Diaries

    8,035 Listeners

    All-In with Chamath, Jason, Sacks & Friedberg by All-In Podcast, LLC

    All-In with Chamath, Jason, Sacks & Friedberg

    9,922 Listeners

    Dwarkesh Podcast by Dwarkesh Patel

    Dwarkesh Podcast

    512 Listeners

    Cyber Security Headlines by CISO Series

    Cyber Security Headlines

    139 Listeners

    Cloud Security Podcast by Google by Anton Chuvakin

    Cloud Security Podcast by Google

    40 Listeners

    Risky Bulletin by risky.biz

    Risky Bulletin

    44 Listeners

    The Economics of Everyday Things by Freakonomics Network & Zachary Crockett

    The Economics of Everyday Things

    1,657 Listeners

    Prof G Markets by Vox Media Podcast Network

    Prof G Markets

    1,425 Listeners

    Sources & Methods by NPR

    Sources & Methods

    797 Listeners