Richard Finlay Tweed
Richard Tweed is a Kubernetes specialist at Tessl. Over the last five years he has been ensuring security, scalability and compliance across all major Kubernetes cloud platforms. He's also the lead maintainer of kube-audit-rest.
Mastodon https://infosec.exchange/@RichardoC
LinkedIn https://www.linkedin.com/in/richardftweed/
Session
08-31
10:10
20min
Using LLMs to accelerate threat detection
Richard Finlay Tweed
Inventing good detections is hard, using them with your SIEM (Security information and event management system) is even harder. That's where Large Language Models (LLMs) come in. This talk will describe how to use your existing runbooks, and experience, to improve your threat detection coverage
Track 2