Scott Crawford

Our thanks to the SOC teams keeping an eye on things this week while many of us enjoy the holidays!

OpenTIDE Threat Informed Detection Modelling and Engineering as-Code

451 Research’s global market forecast for Managed Detection and Response shows MDR growing at a compound annual rate of 21.7% through 2028. That’s 2x the expected CAGR or broader managed security services. Subscribers can access this study at the link in the post.

3 recent deals in MDR: Sophos-Secureworks, Cybereason-Trustwave, Arctic Wolf-Cylance, all motivated by the impact of MDR from an XDR tech vendor, in a market growing 2x broader MSS. The catch: these deals are opportunistic. How will they fare?

Our forecast: clients.451research.com/reportaction...

The innovators among us should enjoy this aspect of the season: one of the most familiar musical sounds this time of year was the result of Tchaikovsky’s enthusiasm for a new invention: the celesta. You’ve heard it, but may not know the history. Article (regwall): www.nytimes.com/2024/12/03/a...

CISA releases first draft of updated National Cyber Incident Response Plan

[Ep. 152] Cyber Insurance | Next in Tech YouTube video by S&P Global Market Intelligence

A discussion on cyber insurance with Eric Hanselman, @scott-crawford.bsky.social and Tom Mason on the 'Next in Tech' podcast: www.youtube.com/watch?v=keg8...

Nothing short of astonishing that the restoration of Notre Dame was accomplished just 5-1/2 years after the fire.

Introducing Wiz Defend | Wiz Blog We’re excited to announce the public preview of Wiz Defend, a cloud-native detection and response solution.

And as if on cue: a one-two punch in #CDR today, now adding this from Wiz to today’s announcements:

www.wiz.io/blog/introdu...

Introducing Amazon GuardDuty Extended Threat Detection: AI/ML attack sequence identification for enhanced cloud security | Amazon Web Services AWS extends GuardDuty with AI/ML capabilities to detect complex attack sequences across workloads, applications, and data, correlating multiple security signals over time for proactive cloud security.

“Disruptive” is the least one could say about this approach to threat detection when offered this way by a major cloud provider.

Hugely provocative on a number of fronts. We’ll be digging into this and more this week at #reInvent.

aws.amazon.com/blogs/aws/in...

It’s easy sometimes to let the AI cynicism flow through you …then you get something like this from blueskyroast.com. Probably my favorite characterization of my social persona ever.

blueskyroast.com/roast/scott-...

I asked ChatGPT to create a picture of my office based on what it knew about me.

It’s remarkably accurate! It’s as if it were standing RIGHT HERE!

Thankful for those for whom today isn’t a day off.

We checked in on your folks for ya earlier today. 😉

David Mortman on LinkedIn: #donprovencher Hard to believe it's been eight years since Gunnar Peterson Alexis Lavi Nathaniel Couper-Noles Matt Johansen #DonProvencher and I built this threat model in…

Have you assessed your Thanksgiving Security Posture?

www.linkedin.com/posts/davidm...

From the S&P Global Ratings insurance coverage team: “Annual cyber insurance premiums are likely to increase by 15% to 20% per year to a total of about $23 billion by the end of 2026, up from about $14 billion at the end of 2023….”

www.spglobal.com/ratings/en/r...

Scott Crawford on LinkedIn: #reinvent Next week, I’ll be joining our 451 Research analyst team at AWS re:Invent in Vegas. What will I be looking out for in security? - In our 2024 Voice of the…

Headed back to Vegas next week for AWS re:Invent. What’s shaping how I will approach what I hear & see there?

www.linkedin.com/posts/scotta...

Are practitioners open to #genAI -produced automated code fixes for security vulns? 33% of 451 Research survey respondents say yes. 44% are willing after reviewing suggested mods; 17% would review but deploy on their own. More from @danielkennedy74.bsky.social: blog.451alliance.com/security-pro...

I think I’m going to come up with an image-generating LLM called “Polydactyly” and market an endless supply of fingers as a FEATURE

Thank you for the mention! Typically kind of you. 🙂

Proprietary 451 Research Market Monitor and Forecast chart showing the global compound annual growth rate (CAGR) for Managed Detection and Response at 21.7% now through 2028.

In our latest 451 Research Market Monitor & Forecast for Managed Security Services, MDR stands out. Our estimate: MDR CAGR will grow at 2x broader MSS thru 2028. Full forecast (sub reqd) incl overall MSSP outlook, by geo, co size & competitive landscape here: clients.451research.com/reportaction...

National Academies Report on Artificial Intelligence and the Future of Work: Key Takeaways The 2024 report, "Artificial Intelligence and the Future of Work," published by the National Academies of Sciences, Engineering, and Medicine, provides a

Insights into the new national academies report on AI and the future of work are here.
oodaloop.com/analysis/dis...

Yay, another trombonist! Played it through high school, picked up horn later - but surprisingly, had the most fun playing tuba!

I’m just coming out of the Silo and wondering what it’s like around here.

Well I don’t “love” that but I’m sorry to hear! Glad that it wasn’t something recent to cause you further discomfort.

Where you’re WHAAAAAT??

On this date in 1978, the BBC changed many of its radio frequencies due to new international agreements. The change was announced by …The King’s Singers, as Anglican chant.
(Video credit: The King’s Singers)

Olivier Latry (IG:@olivierlatry): “‘Chamade army’ getting into battle order on the Casavant organ of the Maison Invia Symphonique in Montreal”

Favorite little-known thing about Paris (just returned): St Sulpice church: Organ concert just about every Sunday at 16h00.

Some of the most gifted virtuosos perform on an instrument that made history in the art of organ music and remains stunning to this day. And it’s free.

Same thing happens to me when I drag my feet on the carpet then touch the rack.