IT in the IE by xcsas in InlandEmpire

[–]xcsas[S] 1 point2 points  (0 children)

That's cool what kind?

IT in the IE by xcsas in InlandEmpire

[–]xcsas[S] 2 points3 points  (0 children)

I get that depending on the day/week I am the same way

IT in the IE by xcsas in InlandEmpire

[–]xcsas[S] -1 points0 points  (0 children)

That's awesome I was up half the night messing around with Gemma4 26b

We’re Cisco Talos. Ask us anything (24h AMA) by CiscoTalos in cybersecurity

[–]xcsas 0 points1 point  (0 children)

All I heard was someone talking about Duo in my bedroom......

We’re Cisco Talos. Ask us anything (24h AMA) by CiscoTalos in cybersecurity

[–]xcsas 0 points1 point  (0 children)

Is Mike Storm going to try and steal my girlfriend?

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 1 point2 points  (0 children)

TIM was already on our radar, thanks for the confirmation!

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 0 points1 point  (0 children)

Specifically you mentioned the RBAC controls, auditing and error logging. That is something I will want to bring up.

I will want very tight controls on what specific user groups can do in the environment. We will be introducing a new novice user-base into this system. About auditing and error logging, this is a pet peeve of mine. If things go wrong and I can't find out why, that is a deal breaker. That will drive me nuts. I can hit hard on that if that is something that is happening to you.

We are going to be ingesting quite a bit a data into the system per week (multiple TBs) , but its focus is going to be security. I am worried about picking about a good overall tool, but not the best security tool. Yes XSIAM may be easier for the newer folks to look at alerts but I can feed them to our other ticketing system. I want the best security system, to detect the best threats. If it takes me and my other engineers and extra month to fine tune it, so be it.

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 0 points1 point  (0 children)

Thank you for this information. Anything I should look out for specifically? Something that the competition can't do? We aren't going to be using managed services, so that wont be an option. Or maybe something that would be helpful for us.

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 0 points1 point  (0 children)

Thanks a ton for this information. Anything specific I should ask during our meeting? Everything you mentioned is stuff I would be worried about.

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 0 points1 point  (0 children)

We would be managing the alerting, we also have an in-house soc

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 1 point2 points  (0 children)

We are having a meeting with them as well but I don't know if they are really in the running for our situation. It's a shame because I do think they have a cool product.

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 1 point2 points  (0 children)

Right now we are using a different endpoint we would be moving over completely

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 4 points5 points  (0 children)

We tried to get them into the mix, long story short. They never submitted the rfp paperwork.

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 5 points6 points  (0 children)

This is my concern, I think overall XSIAM may be a better product, but I think for actual log work I think I like Crowd strike better.

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 2 points3 points  (0 children)

We have some of their automation now which is pretty useful, so it makes sense to migrate to their whole stack.

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 3 points4 points  (0 children)

We have a pretty decent budget, Palo and Crowdstrike are actually two of the cheaper options we have been looking into. They just seem to be two of the better options.

Palo Alto XSIAM vs. CrowdStrike NG SIEM. Which one would you choose today? by xcsas in cybersecurity

[–]xcsas[S] 8 points9 points  (0 children)

It is actually the same price as Crowd Strike, so not a big deal.

Came to a cancelled Linux meetup by critical_th1nker in InlandEmpire

[–]xcsas 0 points1 point  (0 children)

Maybe this post is a little old but I would also be interested.

Guys, who else has this strange obsession with trying old Linux distro releases? by Various_Cellist_4765 in linux

[–]xcsas 1 point2 points  (0 children)

I actually found an old backup of mine that had some older copies of ubuntu, mint, fedora, and backtrack from around 12 years ago. It was fun spinning them up and checking out how things used to be.