Join us on March 19, 2024 @ 6 PM for Narrative Defense: User Stories in InfoSec

Presented by David Burkett

One of the most significant challenges in cybersecurity today is its approach to problem-solving. Technical forums, such as various subreddits, Slack channels, and other social media platforms, are awash with queries like "Which should I choose, CrowdStrike or S1?", "Do I need a SIEM, an XDR provider, or both?", and "What's better, Splunk or LogRhythm?".

This method of seeking solutions is fundamentally flawed for identifying the best fit for an organization, as it overlooks the unique needs of each entity. It often results in allowing sales pitches to guide decisions, leading to the acquisition of the latest flashy tool rather than a solution that genuinely addresses the problem at hand.

In this presentation, we'll explore:

1. Problem Identification: Unpacking the real issue at hand, which is often not as straightforward or quantifiable as it might seem.

2. Crafting User Stories: A guide to developing user stories that capture the essence of the challenges faced.

3. Translating User Stories into Solutions: How to turn these narratives into actionable cybersecurity strategies.

4. Case Studies on Common Pitfalls: Real-world examples demonstrating why a comparative approach to selecting EDR vendors falls short and how it can lead to costly errors.

By the conclusion of this presentation, participants will be armed with a strategy that emphasizes the importance of understanding and tackling specific security challenges over succumbing to the latest trends. This approach not only fosters more effective cybersecurity tactics but also ensures that investments in security technology are both prudent and closely aligned with the organization's objectives.