Adventures using trillions of records inside and outside of the enterprise to find “bad” things: The value of large scale, powerful analytics to the cyber fight

Presented at BSidesDC 2017, Oct. 7, 2017, 11:30 a.m. (50 minutes).

Analysts (us) want to ask big questions of large data sets and get answers back quickly enough to be useful. This approach can be something of a Holy Grail and enabling that type of dynamic, optimal performance requires an appropriate blend of technology, data, and analytic skills. This session will describe an existing analytics platform with over a trillion records and 20 data sets that gives analysts fast answers to big questions, the data ingested into the platform, the skills and approaches by analysts to ask their big questions, and the successes realized analyzing the results of those big questions.

Presenters:

• Eric Dull - Specialist Leader at Deloitte
  Eric Dull is a Specialist Leader at Deloitte, leading data science development in the nexus of cyber security and analytics. He has been working in computer network security and data analytics since 1997 and uses data science, behavioral analytics, software engineering, cloud computing and high-performance computing to ask big questions of vast data sets.

Links:

• https://bsidesdc2017.busyconf.com/schedule#activity_5955a38d7ddce7d7040003f5
• https://www.youtube.com/watch?v=BO5S_mFe-y8

Similar Presentations:

• DEF CON 23 (2015) / Questions and Answers
• DEF CON 29 (2021) / The Unbelievable Insecurity of the Big Data Stack: An Offensive Approach to Analyzing Huge and Complex Big Data Infrastructures
• Black Hat USA 2021 / The Unbelievable Insecurity of the Big Data Stack: An Offensive Approach to Analyzing Huge and Complex Big Data Infrastructures