2025-11-15 –, Room 300
Security operations teams are inundated with alerts, logs, and repetitive workflows that limit their ability to focus on meaningful analysis and rapid response. Emerging AI technologies — particularly Large Language Models (LLMs) — offer an opportunity to bridge that gap by transforming unstructured data into actionable intelligence.
This session provides a high-level exploration of how LLMs and agent-based systems can be thoughtfully integrated into Security Operations Centers (SOCs). Rather than focusing on any specific platform, we’ll discuss key decision points in designing these systems — including model selection, prompt design, context generation, agent creativity, token management, and workflow orchestration.
The presentation will conclude with a brief demo showing how these principles come together in a simple, agent-driven workflow to enrich and summarize security alerts in real time. Attendees will gain a practical understanding of how to evaluate and experiment with LLMs safely and effectively within their own security environments.
Samson Adewale is a Senior Security Engineer at Klaviyo, specializing in threat response and automation. He has led initiatives building automated forensics labs and response frameworks in cloud environments. With a background spanning AWS, Azure, and DevSecOps, Samson is passionate about practical applications of AI to reduce operational overhead and enhance security resilience.