Archived: Implementing Identity Access Prioritization and Risk-Based Alerting for High-Fidelity Alerts
The traditional security monitoring architecture has been troubling security teams with data silos, performance issues, and delays in retrieving archived data for years. Many analysts who continue to operate with the antiquated SIEM architecture stack also experience a high volume of alerts—with many false positives. Luckily, the internal security team at Snowflake has found a way to solve these problems and more by utilizing the Snowflake Data Cloud as Snowflake’s security data lake.
Join this session to learn:
- How the detection lifecycle model helps speed up detection development while improving quality
- How to prioritize your identity and assets and dynamically adjust alert severity based on the prioritization
- How to group alerts based on risk levels
Haider Dost
Manager, Threat Intelligence And Detection
Snowflake
Haider Dost leads Global Threat Intelligence and Detection Engineering at Snowflake. He has over nine years experience in cybersecurity with a focus on Security Operations, Threat Detection, and Threat Intelligence. Prior to joining Snowflake, he led the Threat Detection program at Freddie Mac, and prior to that he led the Global Cybersecurity Operations Center at Capital One . Haider is a George Mason Volgenau School of Engineering alum graduating with a degree focused on Information Security.
Daniel Wyleczuk-Stern
Senior Security Engineer
Snowflake
Daniel Wyleczuk-Stern is a recent convert to the blue team after spending the majority of his career breaking systems at Praetorian and the US Air Force. At Snowflake, he spends his time improving the threat detection program. When he’s not working, you can find him spending time with his wife and cats, enjoying a nice cup of coffee, or meandering around the internet.
Speakers
Haider Dost leads Global Threat Intelligence and Detection Engineering at Snowflake. He has over nine years experience in cybersecurity with a focus on Security Operations, Threat Detection, and Threat Intelligence. Prior to joining Snowflake, he led the Threat Detection program at Freddie Mac, and prior to that he led the Global Cybersecurity Operations Center at Capital One . Haider is a George Mason Volgenau School of Engineering alum graduating with a degree focused on Information Security.
Daniel Wyleczuk-Stern is a recent convert to the blue team after spending the majority of his career breaking systems at Praetorian and the US Air Force. At Snowflake, he spends his time improving the threat detection program. When heâs not working, you can find him spending time with his wife and cats, enjoying a nice cup of coffee, or meandering around the internet.
As director of multimedia content strategy at CyberRisk Alliance, Bradley Barth develops content for online conferences, webcasts, podcasts video/multimedia projects — often serving as moderator or host. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.
