Show Notes
In this episode, we speak to a Detection and Response expert! Our guest is Nick Hakmiller, Senior Engineering Manager at Panther Labs.
Nick was first exposed to technology in High School where he took an introduction to Visual Basic programming course. When learning about multi-threaded applications Nick became curious and began exploring how to open too many threads to crash a computer. Throughout Nick’s career he’s maintained an interest and focus on attack techniques and building defensive security programs.
On occasions, security controls may fail to catch an attacker. A detection is logic that is applied to logs, security controls, and alerts to notify teams and automated processes. Nick describes Python as an exceptional programming language to apply detections and create detections as code.
Nick describes many aspects of security as an engineering problem. As organizations transform and adopt new technologies, security issues arise and evolve. Nick describes that the team’s that are most successful with applying detection as code have chosen to view security as a function that engineering should participate in and help solve.
As an organization’s security program matures, Nick mentions that the most impactful detections will likely be written and created by someone within the organization. For instance, creating a detection that defines which users should have access to sensitive data is likely to be created by a member of the organization with knowledge of team structure.
Towards the end of the episode, Nick shares his wisdom to any practitioner that wants to step into the role of creating detections and providing impact while doing so.
Key Takeaways
0:00 - Welcome Back to the Hacker Valley Studio Podcast!
2:29 - Nick Hakmiller, Senior Engineering Manager at Panther Labs
4:20 - How Nick became interested in technology
6:00 - What is a detection?
7:25 - How detection as code applies to cybersecurity and software engineering
10:11 - Prerequisites to consider before applying detection as code
12:27 - Thinking beyond out of the box solutions and applying detections
15:54 - Categories of detections and which are most impactful
23:45 - Reducing alerts by engineering efforts
27:40 - Is it possible to automate everything for security?
32:56 - Advice on getting started with creating detections
Keep in touch with Nick Hakmiller on LinkedIn
Reach out to Nick on Panther’s Community Slack
Stay up to date with Nick’s work by viewing Panther Analysis
Learn more about Panther Labs
Recent Episodes
How Can I Best Proactively Secure My SaaS?
In this episode, Ron Eddings will explore the massive adaptation of SaaS applications and ways to tame the beast. Our guest Yoni Shohet, Co-Founder & CEO at Valence Security, will help ...
What We All Should Be Talking About When It Comes to AI and ...
In this episode, Host Ron Eddings is joined by guests Anirban Banerjee, CEO and Co-Founder at Riscosity, and James Berthoty, Founder and Analyst at Latio Tech. Together they focus on data ...
Navigating AI as a CISO with Whitney Palacios
In this episode, Host Ron Eddings catches up with one of his colleagues, Whitney Palacios, Vice President and CISO at BigBear.ai. They explore the challenges and responsibilities of being a CISO ...
The Power of AppSec, Cyber Education, and Friendship with Tanya ...
In this episode, Host Ron Eddings catches up with longtime friend, Tanya Janca, Head of Education and Community at SemGrep and author of 'Alice and Bob Learn Application Security.' Tanya shares ...
Networking 2.0: The Future of Decentralized Networking & Access ...
In this episode, Hosts Ron Eddings, and Jen Langdon share takeaways from Ron's RSA conversation with Colin Constable, Co-Founder and CTO at Atsign On this show, they’ll break down Networking 2.0 ...
How AI and TPRM Makes Security the ‘Dept. of Innovation’ with Paul ...
In this episode, Host Ron Eddings enjoys a reprieve from the hectic RSA conference with guest Paul Valente, CEO of VISO Trust. Paul discusses how he used his extensive experience as a CISO to ...
A Deep Dive into MSSPs: Understanding the Evolution and Secrets ...
In this episode, Ron Eddings and Jen Langdon explore the origins of MSSPs and the solutions they offer to the cybersecurity industry with insights from Ricardo Nicolini, CTO at Bulletproof. ...
Zero Trust Tactics: Preventing Breaches with Ivan Fonseca & Nick ...
In this episode, Host Ron Eddings teams up with Ivan Fonseca and Nick Cottrell, Cybersecurity Engineers at ThreatLocker, as they break down the anatomy of previous breaches and the attacker’s ...
Enterprise Browsers: Work’s Natural Next Step
In this episode, Ron Eddings and Jen Langdon talk about the evolution of browsers and how enterprise browsers have entered to change the game for corporations. Special guest Brayden Rogers, ...
Building Tech and Adding Value in the Era of AI with Josh Danielson
In this episode, Ron Eddings talks with guest Josh Danielson, CEO at Kustos, about how his journey at a previous organization has led him to build and create new products in the industry. ...
WORK WITH US
PODCASTS + SPEAKING + EVENTS
Are you the best kept secret in cybersecurity? Let's change that by partnering together for podcast ads, social campaigns, and your next event or keynote. Send us your details to get started.
Thank you!
We will be in touch soon.