08-10, 15:00–16:00 (US/Pacific), Track 1: Presentations & Panels (LVCC W310)
Come hear 4 SOC veterans discuss some of the most challenging topics in security operations today. Carson Zimmerman is joined by SOC industry veterans Eric Lippart, Enoch Long, and Russ McRee. With a total of over 80 years of SOC experience, we cut the buzzword bingo and get real. With a total of over a century of SOC experience, we cut the buzzword bingo and get real. This year, we’ll be discussing topics like: resolving conflict with network and IT ops, what value are people really getting out of LLMs, how to get value with threat intel beyond IOC matching, and more! We will be doing live, real-time polling of the audience. We will also take your spicy questions!
Come hear 4 SOC veterans discuss some of the most challenging topics in security operations today. Carson Zimmerman is joined by SOC industry veterans Eric Lippart, Enoch Long, and Russ McRee. With a total of over 80 years of SOC experience, we cut the buzzword bingo and get real. This year, we’ll be discussing topics like:
- Giving better direction in the SOC and avoiding the feeling of aimless wandering
- Handling security ops in an increasingly regulated environment
- Driving change and innovation with IT and security executives
- Resolving conflict with network and IT ops
- What value are people really getting out of LLMs
- How to get value with threat intel beyond IOC matching
We will be doing live, real-time polling of the audience. We will also take your spicy questions!
Intermediate
Carson Zimmerman has been working in and around security operations centers (SOCs) for over 20 years. In his current role at Ardalyst, Carson helps clients transform uncertainty into understanding in their digital landscape. In his previous role at Microsoft, Carson led the investigations team responsible for defending the M365 platform and ecosystem. His experiences as a SOC analyst, engineer, and architect led Carson to author Ten Strategies of a World-Class Cybersecurity Operations Center, and co-authored its second edition, Eleven Strategies… which may be downloaded for free at mitre.org/11Strategies.
Russ McRee, Ph.D. is Director, GCP Enterprise Protection, Google Cloud. He writes regularly via holisticinfosec.io, a resource for information security practitioners, and has written extensively for additional publications as well. Russ has presented at numerous security conferences including DEFCON, Derby Con, BlueHat, Black Hat, SANSFIRE, and RSA. Russ has served 12+ years as a joint-forces cyber operator, technical planner, and mission commander on behalf of Washington Military Department’s cyber and emergency management missions. Russ is also a Dissertation Chair for Artificial Intelligence and Cyber Leadership programs at Capitol Technology University.
To Enoch Long serves as JupiterOne’s Field CISO. In this capacity, Mr. Long has global responsibility for providing executive leadership, domain expertise, strategic, technical, operational, and security guidance for the Global GTM organization. Before joining JupiterOne, Enoch held key strategic leadership/SecOps positions at Regeneron Pharmaceuticals, Alexion, Splunk, and Northrop Grumman. He also served key cyber engineering and advisory roles supporting Defense and National Security entities. Enoch earned his MBA from Georgetown University and a Bachelor of Science in Computer Science from Temple University. Enoch is based in Washington, DC.
Eric Lippart is the Head of Global Cyber Operations at Manulife/John Hancock and has spent the past 20+ years supporting cyber operations and engineering environments across a variety of industries. Starting with his early years at MITRE working in the defense and national security spaces to his later years in the financial industry, he has been immersed in areas spanning the full spectrum of cyber defense, building out SOCs and cyber programs, developing and driving strategic direction, and revolutionizing cyber capabilities along the way.