DNIF, profile picture
Uploaded byDNIF
PPTX, PDF517 views

Data Analytics in Cyber Security

The document discusses the integration of big data analytics in cyber security, highlighting current challenges and shortcomings of traditional security information and event management systems. It emphasizes the need for improved data processing capabilities, introducing concepts such as data pipelines and big data structures. The speaker, Shomiron Das Gupta, presents opportunities in the field, including managed security services and threat hunting.

Embed presentation

Downloaded 13 times
© Copyright 2017 NETMONASTERY Inc Big Data Structures in the Cyber Security Puzzle 1 Shomiron DAS GUPTA, Founder, CEO NETMONASTERY Inc. Data Analytics in Cyber Security
© Copyright 2017 NETMONASTERY Inc Agenda … Setting Expectations! 2 NEXT 45 MINS 1. Cyber Security - How it works, today! 2. Data Analytics, the What and the Why 3. The Technical Aspects 4. The Pipeline 5. Opportunities - Gaps we’re aiming for 6. Demo
© Copyright 2017 NETMONASTERY Inc Hello, who is speaking? 3 Founder of NETMONASTERY, we built DNIF - An Integrated Threat Hunting Platform for the CSOC Research on Detection, Hunting and …. ML One of the few guys that does defense for a living GCIA 2000 - 18Yrs of Intrusion Detection, Handling WHAT I DO FOR A LIVING @shomiron
© Copyright 2017 NETMONASTERY Inc Cyber Security — The NUMBERS! 4 THE CURRENT WORLD CHALLENGES ■ Data growth 230% YoY ■ Mid Sized Enterprise - 30 TB Monthly ■ Enterprise Grade - 100+ TB Monthly ■ Government - 1.23 PB Monthly ■ Process, Percolation / Lag < 10s ■ Detect stuff we didn’t know about
© Copyright 2017 NETMONASTERY Inc Cyber Security Solutions — Where were we? 5 THE CURRENT WORLD Security Information and Event Management ■ It’s… last generation ■ Slow… can’t scale (database) ■ Rule based - KNOWN / KNOWNs ■ Beautiful UI - HiFi ■ Center of the Earth
© Copyright 2017 NETMONASTERY Inc 6 We FAIL* EVERYDAY!!
© Copyright 2017 NETMONASTERY Inc Data Analytics + Big Data Structures 7 AND THE MARRIAGE PARTY 1. Facets and dimensionality 2. Static / dynamic analytics 3. Why static is better 4. Then why are we doing dynamic? 5. The Marriage of Big Data with Analytics 6. Hadoop…. anybody?
© Copyright 2017 NETMONASTERY Inc Technical Aspects 8 HOW IT WORKS 1. Horizontal scaling - Speed 2. Pipeline, let’s revisit Hadoop? 3. Data preparation - Parsing / Annotation 4. Enrichment - localization for context 5. Plugin framework - SOAR - Enrich, Validate, Respond 6. AI / ML ;) 7. Platform + Content
© Copyright 2017 NETMONASTERY Inc 9 The PIPELINE DATA FLOW WITHIN COLLECT PARSE ANNOTATE ENRICH VISUALIZE CORRELATE INDEX VALIDATE RESPOND REMEDIATE
© Copyright 2017 NETMONASTERY Inc 10 The PIPELINE DATA FLOW WITHIN ADAPTER DATASTORE CORRELATOR
© Copyright 2017 NETMONASTERY Inc Talking about DNIF 11 AND COMPETITION 1. SIEM - ArcSight, QRadar 2. Splunk, ELK 3. Hadoop (Cloudera, Hortonworks), Tableau, HANA, Watson 4. Free Parsers, SOAR, Packages / Plugins 5. Power of Collaboration
© Copyright 2017 NETMONASTERY Inc Opportunities - Gaps we’re aiming for 12 THE BUSINESS ANGLE, YAY! 1. Managed Security Services 2. Threat Hunting 3. Managed Detection Response 4. SWIFT, IMPS, NEFT, CC, Exchange, Telecom Switching 5. The Data Lake Theory - WORKBENCH
Thank You Oh BTW We are hiring Write to us - hello@dnif.it 13

More Related Content

PPTX
Tanium Overview
byJordanTough
 
PPTX
IBM Cloud Introduction
byRavi Pandit
 
PDF
Scala Crash Course
byHaim Michael
 
PPTX
IBM Security QRadar
byVirginia Fernandez
 
PDF
Cloud computing writeup
byselvavijay1987
 
PPT
Cloud computing What Why How
byAsian Institute of Technology (AIT)
 
PPT
Knime
byAmal Targhi
 
PDF
Need Of Security Operations Over SIEM
bySiemplify
 
Tanium Overview
byJordanTough
 
IBM Cloud Introduction
byRavi Pandit
 
Scala Crash Course
byHaim Michael
 
IBM Security QRadar
byVirginia Fernandez
 
Cloud computing writeup
byselvavijay1987
 
Cloud computing What Why How
byAsian Institute of Technology (AIT)
 
Knime
byAmal Targhi
 
Need Of Security Operations Over SIEM
bySiemplify
 

What's hot

PDF
The Top Trends in Artificial Intelligence
byErling Hesselberg
 
PDF
Cloud Computing Technology Overview 2012
byJanine Anthony Bowen, Esq.
 
PDF
Big Data Analytics to Enhance Security
byData Science Thailand
 
PDF
IBM-QRadar-Corporate-Online-Training.
byAvishek Priyadarshi
 
PPTX
Harry Surden - Artificial Intelligence and Law Overview
byHarry Surden
 
PDF
Introduction To Data Science With Python
bySpotle.ai
 
PPTX
Agentic AI: The 2025 Next-Gen Automation Guide
byThoughtminds
 
PPTX
Accenture Security Services: Defending and empowering the resilient digital b...
byAccenture Technology
 
PPTX
Virtualization and its Types
byHTS Hosting
 
PPTX
Big data
byfactscomputersoftware
 
PDF
Cloud Security And Privacy
bytmather
 
PPT
Cloud computing
byMOHIT PANDEY
 
PPTX
The Incredible Ways Artificial Intelligence Is Now Used In Mental Health
byBernard Marr
 
PDF
Unified Approach to Interpret Machine Learning Model: SHAP + LIME
byDatabricks
 
PPTX
Cognitive Computing
byAnmol Nijhawan
 
PDF
Hexagonal And Beyond
byThomas Pierrain
 
PPTX
Misp(malware information sharing platform)
byNadim Kadiwala
 
PPTX
Using Generative AI
byMark DeLoura
 
PPTX
5 BENEFITS OF HYBRID CLOUD
byTyrone Systems
 
PDF
Cyber Security and Data Science
byAnia Wieczorek
 
The Top Trends in Artificial Intelligence
byErling Hesselberg
 
Cloud Computing Technology Overview 2012
byJanine Anthony Bowen, Esq.
 
Big Data Analytics to Enhance Security
byData Science Thailand
 
IBM-QRadar-Corporate-Online-Training.
byAvishek Priyadarshi
 
Harry Surden - Artificial Intelligence and Law Overview
byHarry Surden
 
Introduction To Data Science With Python
bySpotle.ai
 
Agentic AI: The 2025 Next-Gen Automation Guide
byThoughtminds
 
Accenture Security Services: Defending and empowering the resilient digital b...
byAccenture Technology
 
Virtualization and its Types
byHTS Hosting
 
Big data
byfactscomputersoftware
 
Cloud Security And Privacy
bytmather
 
Cloud computing
byMOHIT PANDEY
 
The Incredible Ways Artificial Intelligence Is Now Used In Mental Health
byBernard Marr
 
Unified Approach to Interpret Machine Learning Model: SHAP + LIME
byDatabricks
 
Cognitive Computing
byAnmol Nijhawan
 
Hexagonal And Beyond
byThomas Pierrain
 
Misp(malware information sharing platform)
byNadim Kadiwala
 
Using Generative AI
byMark DeLoura
 
5 BENEFITS OF HYBRID CLOUD
byTyrone Systems
 
Cyber Security and Data Science
byAnia Wieczorek
 

Similar to Data Analytics in Cyber Security

PPTX
Big Data Impacts on Hybrid Infrastructure and Management
byEnterprise Management Associates
 
PPTX
Mastering Next Gen SIEM Use Cases (Part 3)
byDNIF
 
PDF
Mastering next gen-siem-usecases-part1
byPriyanka Aash
 
PPTX
Crisis-Ready Crisis-Proof IT Infrastructure for the New Normal
byKalin Hitrov
 
PDF
IOT_MODULE_4.pd easy to understand notes
byshreyarrce
 
PPTX
Big Data Presentation - Data Center Dynamics Sydney 2014 - Dez Blanchfield
byDez Blanchfield
 
PDF
The Rise of Big Data and the Chief Data Officer (CDO)
bygcharlesj
 
PPTX
Big data analytics and machine intelligence v5.0
byAmr Kamel Deklel
 
PDF
Big Data Science Workshop Documentation V1.0
byAbdelrahman Astro
 
PPTX
Big Data Expo 2015 - IBM 5 predictions
byBigDataExpo
 
PDF
SuanIct-Bigdata desktop-final
bystelligence
 
PDF
Workshop on Data Science at Best Practices Meet 2017, Data Security Council o...
byShomiron Das Gupta
 
PDF
Aioug big data and hadoop
byAiougVizagChapter
 
PPTX
Big Data and Semantic Web in Manufacturing
byNitesh Khilwani
 
PDF
History of Data-Centric Transformation
byscoopnewsgroup
 
PPT
Óscar Méndez - Big data: de la investigación científica a la gestión empresarial
byFundación Ramón Areces
 
PPTX
Cloud Revolution Conitnues
byPatrick J McCartney
 
PPTX
Big Data Past, Present and Future – Where are we Headed? - StampedeCon 2014
byStampedeCon
 
PPTX
Intro big data analytics
byHagar Alaa el-din
 
PDF
Random notes on big data
byJay Wu
 
Big Data Impacts on Hybrid Infrastructure and Management
byEnterprise Management Associates
 
Mastering Next Gen SIEM Use Cases (Part 3)
byDNIF
 
Mastering next gen-siem-usecases-part1
byPriyanka Aash
 
Crisis-Ready Crisis-Proof IT Infrastructure for the New Normal
byKalin Hitrov
 
IOT_MODULE_4.pd easy to understand notes
byshreyarrce
 
Big Data Presentation - Data Center Dynamics Sydney 2014 - Dez Blanchfield
byDez Blanchfield
 
The Rise of Big Data and the Chief Data Officer (CDO)
bygcharlesj
 
Big data analytics and machine intelligence v5.0
byAmr Kamel Deklel
 
Big Data Science Workshop Documentation V1.0
byAbdelrahman Astro
 
Big Data Expo 2015 - IBM 5 predictions
byBigDataExpo
 
SuanIct-Bigdata desktop-final
bystelligence
 
Workshop on Data Science at Best Practices Meet 2017, Data Security Council o...
byShomiron Das Gupta
 
Aioug big data and hadoop
byAiougVizagChapter
 
Big Data and Semantic Web in Manufacturing
byNitesh Khilwani
 
History of Data-Centric Transformation
byscoopnewsgroup
 
Óscar Méndez - Big data: de la investigación científica a la gestión empresarial
byFundación Ramón Areces
 
Cloud Revolution Conitnues
byPatrick J McCartney
 
Big Data Past, Present and Future – Where are we Headed? - StampedeCon 2014
byStampedeCon
 
Intro big data analytics
byHagar Alaa el-din
 
Random notes on big data
byJay Wu
 

More from DNIF

PPTX
Beyond blacklists - A cyber threat intelligence perspective
byDNIF
 
PPTX
Insight into SOAR
byDNIF
 
PPTX
A closer look at CTF challenges
byDNIF
 
PDF
Threat Intelligence and Cyber Security Challenges | KASPERSKY & DNIF INTEGRATION
byDNIF
 
PPTX
CVE Analysis using vFeed
byDNIF
 
PDF
Container Security Essentials
byDNIF
 
PDF
Importance of having a vulnerability management | Vfeed
byDNIF
 
PPTX
Anatomy of Persistence Techniques & Strategies to Detect
byDNIF
 
PPTX
User Behavior Analytics Using Machine Learning
byDNIF
 
PPTX
Process Whitelisting With VirusTotal
byDNIF
 
PPTX
VirusTotal Threat Intelligence and DNIF Use Cases
byDNIF
 
PPTX
Threat hunting and achieving security maturity
byDNIF
 
PPTX
Kaspersky Threat Intelligence Portal and DNIF Use Cases
byDNIF
 
PPTX
Mastering Next Gen SIEM Use Cases (Part 2)
byDNIF
 
PPTX
Mastering Next Gen SIEM Use Cases (Part 1)
byDNIF
 
Beyond blacklists - A cyber threat intelligence perspective
byDNIF
 
Insight into SOAR
byDNIF
 
A closer look at CTF challenges
byDNIF
 
Threat Intelligence and Cyber Security Challenges | KASPERSKY & DNIF INTEGRATION
byDNIF
 
CVE Analysis using vFeed
byDNIF
 
Container Security Essentials
byDNIF
 
Importance of having a vulnerability management | Vfeed
byDNIF
 
Anatomy of Persistence Techniques & Strategies to Detect
byDNIF
 
User Behavior Analytics Using Machine Learning
byDNIF
 
Process Whitelisting With VirusTotal
byDNIF
 
VirusTotal Threat Intelligence and DNIF Use Cases
byDNIF
 
Threat hunting and achieving security maturity
byDNIF
 
Kaspersky Threat Intelligence Portal and DNIF Use Cases
byDNIF
 
Mastering Next Gen SIEM Use Cases (Part 2)
byDNIF
 
Mastering Next Gen SIEM Use Cases (Part 1)
byDNIF
 

Recently uploaded

PDF
Beyond Basics: How to Build Scalable, Intelligent Imagery Pipelines
bySafe Software
 
PDF
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
PDF
SELinux Policy Management in RHEL - RHCSA+.pdf
byLinuxCert Guru
 
PDF
UiPath DevConnect 2025: UiPath ScreenPlay - The Future of Human-Like Automation
byDianaGray10
 
PDF
SELinux Basics: Managing SELinux Modes and Context - RHCSA+.pdf
byLinuxCert Guru
 
PDF
KMWorld - KM & AI Bring Collectivity, Nostalgia, & Selectivity
byJonathan Ralton
 
PDF
Supervised Machine Learning Approaches for Log-Based Anomaly Detection: A Cas...
byMohammed BEKKOUCHE
 
PPTX
Explaining ourselves – people, computers and AI
byAlan Dix
 
PDF
THE THREATS OF INSTABILITY IN BRAZIL'S INTERCONNECTED ELECTRICAL SYSTEM AND H...
byFaga1939
 
PDF
IDSECCONF2025 - Ali - DursGo–Web Security Scanner with AI Analysis.pdf
byidsecconf
 
PDF
OutSystsems User Group Brabant November 2025
bymail496323
 
PDF
IDSECCONF2025 - Rama Tri Nanda - Hunting Stingray GSM on Budget.pdf
byidsecconf
 
PDF
LVM Management and Disaster Recovery.pdf
byLinuxCert Guru
 
PDF
UiPath DevConnect 2025: UiPath ScreenPlay - The Future of Human-Like Automation
byDianaGray10
 
PPTX
Neo4j Fraud GraphTalk Singapore Nov 2025
bygourisachdeva2
 
PDF
Linux Professional Institute LPIC-1 Exam.pdf
byLinuxCert Guru
 
PDF
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
PDF
November 2025 OpenMetadata Community Spotlight - Astronomer & Airflow 3
byOpenMetadata
 
PDF
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
PPTX
Opening Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
Beyond Basics: How to Build Scalable, Intelligent Imagery Pipelines
bySafe Software
 
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
SELinux Policy Management in RHEL - RHCSA+.pdf
byLinuxCert Guru
 
UiPath DevConnect 2025: UiPath ScreenPlay - The Future of Human-Like Automation
byDianaGray10
 
SELinux Basics: Managing SELinux Modes and Context - RHCSA+.pdf
byLinuxCert Guru
 
KMWorld - KM & AI Bring Collectivity, Nostalgia, & Selectivity
byJonathan Ralton
 
Supervised Machine Learning Approaches for Log-Based Anomaly Detection: A Cas...
byMohammed BEKKOUCHE
 
Explaining ourselves – people, computers and AI
byAlan Dix
 
THE THREATS OF INSTABILITY IN BRAZIL'S INTERCONNECTED ELECTRICAL SYSTEM AND H...
byFaga1939
 
IDSECCONF2025 - Ali - DursGo–Web Security Scanner with AI Analysis.pdf
byidsecconf
 
OutSystsems User Group Brabant November 2025
bymail496323
 
IDSECCONF2025 - Rama Tri Nanda - Hunting Stingray GSM on Budget.pdf
byidsecconf
 
LVM Management and Disaster Recovery.pdf
byLinuxCert Guru
 
UiPath DevConnect 2025: UiPath ScreenPlay - The Future of Human-Like Automation
byDianaGray10
 
Neo4j Fraud GraphTalk Singapore Nov 2025
bygourisachdeva2
 
Linux Professional Institute LPIC-1 Exam.pdf
byLinuxCert Guru
 
MINDCTI Revenue Release Quarter 3 2025 - Financial Presentation
byMIND CTI
 
November 2025 OpenMetadata Community Spotlight - Astronomer & Airflow 3
byOpenMetadata
 
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
Opening Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
In this document
Powered by AI

Presentation introduction by Shomiron Das Gupta, focusing on data analytics in cyber security.

Statistics on data growth and issues in current security solutions, highlighting limitations of existing systems.

Discussion on the integration of analytics with big data, emphasizing facets, dimensionality, and technical aspects.

Description of the data flow within the pipeline, outlining steps from collection to remediation.

Overview of competitors in cyber security solutions and collaboration opportunities within the market.

Exploration of business opportunities, including managed services and threat hunting in the domain.

Thank you note with a hiring statement, inviting potential candidates to connect.

Data Analytics in Cyber Security

  • 1.
    © Copyright 2017NETMONASTERY Inc Big Data Structures in the Cyber Security Puzzle 1 Shomiron DAS GUPTA, Founder, CEO NETMONASTERY Inc. Data Analytics in Cyber Security
  • 2.
    © Copyright 2017NETMONASTERY Inc Agenda … Setting Expectations! 2 NEXT 45 MINS 1. Cyber Security - How it works, today! 2. Data Analytics, the What and the Why 3. The Technical Aspects 4. The Pipeline 5. Opportunities - Gaps we’re aiming for 6. Demo
  • 3.
    © Copyright 2017NETMONASTERY Inc Hello, who is speaking? 3 Founder of NETMONASTERY, we built DNIF - An Integrated Threat Hunting Platform for the CSOC Research on Detection, Hunting and …. ML One of the few guys that does defense for a living GCIA 2000 - 18Yrs of Intrusion Detection, Handling WHAT I DO FOR A LIVING @shomiron
  • 4.
    © Copyright 2017NETMONASTERY Inc Cyber Security — The NUMBERS! 4 THE CURRENT WORLD CHALLENGES ■ Data growth 230% YoY ■ Mid Sized Enterprise - 30 TB Monthly ■ Enterprise Grade - 100+ TB Monthly ■ Government - 1.23 PB Monthly ■ Process, Percolation / Lag < 10s ■ Detect stuff we didn’t know about
  • 5.
    © Copyright 2017NETMONASTERY Inc Cyber Security Solutions — Where were we? 5 THE CURRENT WORLD Security Information and Event Management ■ It’s… last generation ■ Slow… can’t scale (database) ■ Rule based - KNOWN / KNOWNs ■ Beautiful UI - HiFi ■ Center of the Earth
  • 6.
    © Copyright 2017NETMONASTERY Inc 6 We FAIL* EVERYDAY!!
  • 7.
    © Copyright 2017NETMONASTERY Inc Data Analytics + Big Data Structures 7 AND THE MARRIAGE PARTY 1. Facets and dimensionality 2. Static / dynamic analytics 3. Why static is better 4. Then why are we doing dynamic? 5. The Marriage of Big Data with Analytics 6. Hadoop…. anybody?
  • 8.
    © Copyright 2017NETMONASTERY Inc Technical Aspects 8 HOW IT WORKS 1. Horizontal scaling - Speed 2. Pipeline, let’s revisit Hadoop? 3. Data preparation - Parsing / Annotation 4. Enrichment - localization for context 5. Plugin framework - SOAR - Enrich, Validate, Respond 6. AI / ML ;) 7. Platform + Content
  • 9.
    © Copyright 2017NETMONASTERY Inc 9 The PIPELINE DATA FLOW WITHIN COLLECT PARSE ANNOTATE ENRICH VISUALIZE CORRELATE INDEX VALIDATE RESPOND REMEDIATE
  • 10.
    © Copyright 2017NETMONASTERY Inc 10 The PIPELINE DATA FLOW WITHIN ADAPTER DATASTORE CORRELATOR
  • 11.
    © Copyright 2017NETMONASTERY Inc Talking about DNIF 11 AND COMPETITION 1. SIEM - ArcSight, QRadar 2. Splunk, ELK 3. Hadoop (Cloudera, Hortonworks), Tableau, HANA, Watson 4. Free Parsers, SOAR, Packages / Plugins 5. Power of Collaboration
  • 12.
    © Copyright 2017NETMONASTERY Inc Opportunities - Gaps we’re aiming for 12 THE BUSINESS ANGLE, YAY! 1. Managed Security Services 2. Threat Hunting 3. Managed Detection Response 4. SWIFT, IMPS, NEFT, CC, Exchange, Telecom Switching 5. The Data Lake Theory - WORKBENCH
  • 13.
    Thank You Oh BTWWe are hiring Write to us - hello@dnif.it 13