RSA 2020: It’s a Wrap!

RSA 2020: It’s a Wrap!

As virtually every single person working in the world of security knows, last week was the annual RSA Conference. Tens of thousands of security-minded folk from all over the world converged in San Francisco to talk all things security.

Let’s just get the elephant in the room out of the way right now: yes, attendance was down. Some say way down. Yes, fears over the global outbreak of COVID-19/Coronavirus was the reason. Yes, some vendors also pulled out because of the perceived risk. I’m not here to judge one way or another if that was a wise decision, but I certainly understand that in security we all make risk calculations every single day and they made a decision based on a calculus unique to them.

With attendance down, there was a silver lining, at least for me: I was able to spend  substantially more time having in-depth and lengthy conversations with media, customers, and prospective customers as well as walking the show floor and chatting with other vendors about what they were up to.

Lastline kicked off the week with our own social event at Dirty Habit inside the Hotel Zelos. Attendees had a blast connecting and indulging. Whoever is in charge at Dirty Habit for making those french fries deserves an award. A great time was had by everyone and I want to thank everyone who took time out of a stacked social calendar to stop in and say hi.

Lastline’s booth was placed in a great spot this year and we enjoyed a lot of traffic. Lastline staff was able to show off just how amazing our AI- and ML-powered NDR solution is with a series of live demos that shocked many people who had never interacted with Lastline before. More than once did I hear people say things like:

“Wow, you can detect THAT?”

“That is SO cool!”

“You mean to tell me I can have this up and running in less than an hour?”

“We’re really starting to work more with MITRE ATT&CK and we could really use this.”

Which is a nice segue into the vibe on the floor. If you aren’t aware of MITRE ATT&CK Framework, you should be. Here’s a great place to get started. There were a lot of vendors on the floor talking about ATT&CK and how using it can lead to better security outcomes. It’s so great for all of us to be able to speak the same language when it comes to dealing with threats and attacks, and what MITRE has done to support this deserves a medal.

Of course, at Lastline we are highly integrated with the MITRE ATT&CK Framework and make it easy for you to map events and intrusions to it – I co-hosted a webinar late last year about it, if you’d like to go take a look.

There were a lot of other interesting things being talked about on the floor: automation and the cloud were mentioned everywhere. I often speak to people about how important automation is going forward given the insane amount of data we’re now storing coupled with the lightning-fast networks of today (not to mention tomorrow). What it means is that there just aren’t enough trained professionals in the world to keep their eyes on every bit and byte traversing our infrastructure and ending up on hard drives.

So, what can we do? It’s clear the only way we can find smaller needles in larger haystacks is to trust in the machines to carry more and more of the burden. AI and ML technologies have really started to show their chops in cybersecurity, and when it works… it works incredibly well.

Thanks to everyone who stopped by the booth last week and enjoyed the coffee, fresh-baked cookies, popcorn, and ice cream – and equally enjoyed the engaging conversations about how Lastline’s unique NDR offering (a cornerstone of the SOC Visibility Triad) might fit inside their security infrastructure. It really was a great week!

Richard Henderson

Richard Henderson

Richard Henderson is Head of Global Threat Intelligence, where he is responsible for trend-spotting, industry-watching, and evangelizing the unique capabilities of Lastline’s technologies. He has nearly two decades of experience and involvement in the global hacker community and discovers new trends and activities in the cyber-underground. He is a researcher and regular presenter at conferences and events and was lauded by a former US DHS undersecretary for cybersecurity as having an “insightful view” on the current state of cybersecurity. Richard was one of the first researchers in the world to defeat Apple’s TouchID fingerprint sensor on the iPhone 5S. He has taught courses on radio interception techniques multiple times at the DEFCON hacker conference. Richard is a regular writer and contributor to many publications including BankInfoSecurity, Forbes, Dark Reading, and CSO.
Richard Henderson