『SuperSOC: Conversations with the People Shaping the Future of Security Operations』のカバーアート

SuperSOC: Conversations with the People Shaping the Future of Security Operations

SuperSOC: Conversations with the People Shaping the Future of Security Operations

著者: Qevlar AI
無料で聴く

SuperSOC is the monthly podcast where Qevlar AI's CEO Ahmed Achchak interviews top cybersecurity experts to explore the future of the SOC.

From real-world AI applications to rethinking SecOps workflows, each episode delivers bold insights and practical strategies for modern security teams.

Recent guests include Google’s Anton Chuvakin and cybersecurity automation expert Filip Stojkovski.

Want to know more about Qevlar AI and how it can help you automate alert investigation? Head to www.qevlar.com

© 2026 SuperSOC: Conversations with the People Shaping the Future of Security Operations
エピソード
  • Building the SOC That Thinks Beyond Alerts ft. Rob van Os @SOC-CMM
    2026/06/15

    Most SOCs today are still built around the same assumption: wait for an alert, investigate it, move to the next one.

    But what happens when AI becomes capable of doing much more than alert triage?

    In this episode, Ahmed Achchak (CEO & Co-founder of Qevlar AI) sits down with Rob van Os, Strategic SOC Advisor at SOC-CMM, to discuss what comes after the alert-centric SOC and why the future of security operations may be driven by continuous situational awareness rather than reactive investigations.

    You'll discover:

    → The three stages of SOC evolution: human-led, AI-augmented, and AI-driven.

    → Why simply adding AI to existing workflows won't unlock its full potential.

    → How exposure management, telemetry, and threat intelligence can be combined to create true situational awareness.

    → Why the role of analysts will shift from investigation to governance and oversight.

    → The biggest obstacles preventing organizations from building AI-driven SOCs today.

    → Why trust, context, and human validation remain essential even as AI capabilities improve.

    Agenda:

    01:30 – The three stages of SOC evolution

    04:10 – Why the alert queue is becoming the SOC's biggest bottleneck

    05:15 – Moving from reactive investigations to continuous monitoring

    07:35 – Situational awareness: combining threats, exposure, and telemetry

    10:35 – Can AI help build self-healing security operations?

    13:00 – What trust looks like in an AI-driven SOC

    18:00 – The data and context problem

    29:00 – Fire Round: AI, SOC maturity, and future attacker tactics

    Follow Ahmed on LinkedIn: https://www.linkedin.com/in/ahmed-achchak-872554109

    Follow Rob van Os on LinkedIn: https://www.linkedin.com/in/socadvisor/

    Read Rob’s article on AI-driven SOC: https://www.linkedin.com/pulse/ai-driven-soc-revisited-moving-beyond-alert-centric-security-van-os-jyjqe/

    続きを読む 一部表示
    33 分
  • Claude Mythos: Security Armageddon or Marketing Stunt? ft. Dave McKenzie
    2026/05/11

    Mythos may be the biggest cybersecurity AI announcement we’ve seen so far but is it actually a revolution for attackers, or just another overhyped AI moment? In this episode, Ahmed Achchak (CEO of Qevlar AI) sits down with cybersecurity consultant Dave McKenzie to break down what Mythos really changes for defenders, why most organizations are focusing on the wrong risks, and what SOC teams should prepare for now.

    You’ll discover:

    • Why Mythos is less about “AI hacking the world overnight” and more about accelerating targeted attacks.
    • The hidden operational problem AI creates for SOCs: more signals, more vulnerabilities, and more difficult prioritization decisions.
    • Why patching everything is no longer realistic and how mature teams should think about exposure instead.
    • How AI can actually help defenders by connecting weak signals humans would normally miss.
    • Why regulatory frameworks like PCI DSS may become unexpectedly painful in an AI-driven vulnerability landscape.

    Agenda:

    00:00 – Introduction: Is Mythos hype or a real shift for defenders?

    02:16 – What Mythos actually changes in cybersecurity

    06:11 – Why AI won’t “hack the world overnight”

    09:22 – The SOC workflows most likely to break first

    13:18 – How AI can help defenders connect weak signals

    16:48 – Why patching everything no longer works

    20:46 – The overlooked compliance and business risks

    26:18 – Why prioritization becomes the key SOC capability

    27:20 – Wrap-up: What defenders should focus on next

    Follow Dave McKenzie on LinkedIn: https://www.linkedin.com/in/davewmckenzie/

    Follow Ahmed Achchak on LinkedIn: https://www.linkedin.com/in/ahmed-achchak-872554109/

    Stay tuned for updates from Qevlar AI: https://www.linkedin.com/company/qevlar

    Curious to learn how Qevlar AI can automate alert investigation and help your SOC scale against increasingly complex attacks?

    Head to: www.qevlar.com

    続きを読む 一部表示
    29 分
  • The Intelligence Layer: The Missing Piece Every SOC Has Been Waiting For ft. Raffael Marty (ex-ConnectWise, ArcSight, Splunk)
    2026/04/14

    AI is making security operations faster but not necessarily smarter. In this episode, Ahmed Achchak (CEO & Co-founder of Qevlar AI) sits down with Raffael Marty, cybersecurity veteran and early pioneer of SIEM and security analytics, to unpack why SOCs still struggle to understand attacks and what’s been missing all along: a true intelligence layer.

    You’ll discover:

    → Why 20+ years of SIEM and correlation technologies still leave analysts reconstructing attacks manually

    → What actually broke in the evolution from early context-rich systems to today’s event-driven detection models

    → Why adding “AI on top” of existing tools doesn’t fix the core problem

    → How to capture analyst decisions and unlock a new layer of institutional knowledge

    → What an intelligence layer really is and how it changes the way investigations happen

    → How shifting from alerts to risk and campaigns reshapes security operations

    Agenda:

    00:00 – Introduction: Why SOCs still can’t connect the dots

    02:16 – What broke in SIEM and why correlation failed

    04:23 – Why alerts are a flawed foundation

    07:42 – From alerts to campaigns: a new way to investigate

    10:57 – Turning analyst knowledge into an intelligence layer

    15:08 – Why LLMs need structured context (and where they fail)

    20:27 – Moving to risk-based, AI-driven SOC operations

    24:49 – Fire Round: AI-ready SOCs, the end of tiers, and future skills

    Follow Ahmed on LinkedIn: https://www.linkedin.com/in/ahmed-achchak-872554109/

    Follow Raffael Marty on LinkedIn: https://www.linkedin.com/in/raffy/

    Get more of Raffael’s insights on his blog: https://raffy.ch/blog/

    Stay tuned for Qevlar AI updates: https://www.linkedin.com/company/qevlar

    Curious to learn how Qevlar AI can help you build an intelligence layer that turns alerts into real understanding? Head to: qevlar.com

    続きを読む 一部表示
    26 分
adbl_web_anon_alc_button_suppression_t1
まだレビューはありません