Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Brian Carrier, CEO of Sleuth Kit Labs, joined Defender Fridays to discuss EDR, DFIR and Endpoint Triage. We explored how SOCs can effectively investigate endpoints after alerts to decide whether to wipe it or call an IR team. Brian covered leveraging EDR data and additional forensic artifacts for better Endpoint Triage, helping teams cut through the overwhelming amount of information to make informed response decisions.

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community.

Hayden Covington, SOC SecOps Lead at Black Hills Information Security, joined us for Defender Fridays to discuss preserving human-centered approaches in modern security operations.

David Weston, Corp Vice President of OS Security at Microsoft, joined us for Defender Fridays! He covered how we protect AI data and models on Windows devices outside of the data center, and how we use AI to find vulnerabilities in Windows.

When evaluating AI agents for your SOC, it's not just about capabilities—it’s about control, oversight, and integration. In this clip, Philippe Tchakovski breaks down the most common mistakes security teams make when adopting AI: from fragile API integrations to missing guardrails and a lack of audit trails. Don’t deploy blindly—understand the risks before automation goes live.

On this episode of the Cybersecurity Defenders Podcast we speak with Filip Stojkovski, Staff Security Engineer at Snyk. Filip is a cybersecurity professional with over 15 years of experience. He began his career as a SOC analyst and now leads SecOps engineering at Snyk. Filip also advises organizations on SOAR, AI for SOC, and threat intelligence strategies.

In this episode of The Cybersecurity Defenders Podcast, we discuss some intel being shared in the LimaCharlie community.

Shaun McCullough, Cloud Security Engineer at GitHub, dives into cloud security at a massive scale.

Join us for an exclusive behind-the-scenes look at how Thomas Murray, a global risk intelligence company, enhanced their security operations using LimaCharlie's SecOps Cloud Platform. In this technical deep dive, Thomas Murray's security expert Guillermo Roman, demonstrates how they've leveraged LimaCharlie's platform to enhance their security operations. By implementing custom automation workflows, Thomas Murray has achieved significant reductions in incident response times.

Fred Wilmot, CEO and Co-Founder of Detecteam, joined Defender Fridays to discuss the growing concerns surrounding identity management in cloud security, particularly with the rise of attacks on platforms like O365 and Azure. He emphasizes the importance of analyzing network traffic to understand identity behavior and the complexities introduced by encryption and third-party authentication. He also notes the ongoing evolution in cybersecurity practices and the potential benefits of standardization in logging and taxonomies.