01. Adam Vincent, ThreatConnect, Visits #theCUBE!. (00:19) 02. Tell Us About The Adaptive Response Team That You're On For Splunk. (00:50) 03. What Is Splunk Doing On The Threat Detection Side. (01:55) 04. What's The Biggest Issue You Hear From Customers. (03:23) 05. Is Dealing With Threats Like Playing Whack A Mole. (05:56) 06. How Do Customers Deploy Splunk And How Do You Adise On Security. (07:60) 07. Is The Data Time Factor Huge. (10:46) 08. Does Splunk Help Companies Be Smarter. (12:40) 09. Do You Have Friction With The Government About What Data You Can Share. (15:07) 10. Are You A Federated Sharing Platform. (17:05) 11. Does Splunk Have The Capability Of Management Of Sharing. (18:33) 12. Are You Onto Something Big In The Social Network Of This Community. (19:53) 13. When Will We Get Out Of The Phase Of Throwing The Kitchen Sink At Security. (23:48) Track List created with http://www.vinjavideo.com. --- --- First rule of cybersecurity: Know your enemy | #splunkconf16 by Marlene Den Bleyker | Sep 29, 2016 Splunk, Inc. is redefining how people secure their data with its Adaptive Response Initiative, which uses an end-to-end platform with multi-vendor participation to combat the increasing rate of cyber-attacks. During Splunk.conf 2016 held in Orlando, FL, the company announced that it was expanding the number of companies participating in the program to leverage information and automation to better defend against attackers. Adam Vincent, CEO and cofounder of ThreatConnect Inc., joined John Walls (@JohnWalls21) and John Furrier (@furrier), cohosts of theCUBE, from the SiliconANGLE Media team, to talk about his company’s role in Splunk’s Adaptive Response Initiative. Powerful connections When Splunk announced the Initiative last year, ThreatConnect, a threat intelligence platform, joined the initiative. According to Vincent, Splunk built a framework that allows companies to integrate with its platform, and the result is powerful for all parties. “It’s not a product, but it allows us to work as a team and fight the threat together, which is sorely needed in the security industry,” he said. Top-level issue When speaking about the issue of cybersecurity, Vincent explained that the issue is getting worse by the day, and with the rapid growth of technology and devices, it is hard to keep up with demand. He noted, however, that the enterprise security teams charged with defending assets are just not prepared for what they are up against. “The biggest issue is people don’t even know what they are up against, and for that reason we don’t know what to do against the attackers,” Vincent maintained. Efficiency through coordination By coordinating the effort, Splunk is already making it easier for companies to get better at defending the organization, according to Vincent. “They won’t have 30 products that they need to log into and do different things in each one. They will gain efficiency because they can automate parts of processes that traditionally have been human driven. They can look at the data and make better decisions,” stated Vincent. RELATED: How one company approaches the new generation of storage | #VMworld To catch a thief Vincent went on to discuss his company’s involvement. Threat Connect is a knowledge base for threats. The platform understands what capabilities hackers have at their disposal, and this intelligence is communicated to Splunk so that its platform knows to search for these threats. Vincent compared it to law enforcement technology. “Think of it like a Big Data base of fingerprints and DNA and facial expressions of all the people that might go after a bank,” he commented. Outmatched and underfunded Vincent said that companies are not taking it lightly, but the attackers are highly motivated and well resourced. He stated that hackers are building technology to make attacking companies easier, and he said they have strong business practices in how they obtain malware and use it against businesses and individuals. In order to create a shift in the paradigm, Vincent acknowledges that bigger budgets, more people and more technologies are necessary. “The first step is to know what you’re up against in order to plan effectively to defeat attackers,” he added.