Is LLM all you need for Cloudtrail analysis - Rex Guo & Diane Lin скачать в хорошем качестве

Is LLM all you need for Cloudtrail analysis - Rex Guo & Diane Lin

Speakers: Rex Guo (@Xiaofei_REX) & Diane Lin Rex is currently the Co-founder/CEO of Culminate Inc. A company that builds an AI SOC analyst that investigates every alert like a tier-1 analyst and augment the rest of the SOC. Previously, he built attack path analysis, polygraph threat detection, and CIEM at Lacework. Before Lacework, he worked in two early stage security companies. He was the Head of Research at Confluera (an XDR company acquired by XMCyber). Earlier than that, he was an Engineering Manager at Tetration (a CWPP company acquired by Cisco). Along his career building detection and response tools, he has investigated dozens of security incidents involving sophisticated attacks in data center and cloud. He has authored 40+ patents and publications. He has presented multiple times at Black Hat, DEFCON and others conferences. He is also a MITRE ATT&CK contributor and has disclosed vulnerabilities in critical software. He holds a PhD from New York University. Dr. Diane Lin is CTO at Culminate, which is building auto-pilot for SOC automation. She was Director of Machine Learning at Zscaler. Her team builds effective ML systems, including the one helped FBI to take down Qakbot. Dr. Lin earned her PhD in Machine Learning from Imperial College London. She is one of the pioneers on AGI, including a stint at MIT where she worked on one-shot learning. Later, she joined Amazon Alexa as a Machine Learning Scientist and made significant contributions to improving Alexa's question-answering abilities. Her innovative work in natural language understanding techniques earned her Amazon's 'think big' award. Following her time at Amazon, Dr. Lin continued her work in Artificial General Intelligence at the robotics company Vicarious, which was recently acquired by Google DeepMind. Overall, Dr. Lin has a proven track record of success and has made significant contributions to the field of AGI and machine learning throughout her career. Abstract: No doubt everybody is curious if you can use large language models (LLMs) for security operations such as cloud trail analysis. In this talk, we will demonstrate how you can and can't use LLMs like GPT4 to analyze cloudtrail logs, and discuss in detail the promise and limitations of using LLMs this way. We will go deep on how LLMs work and share state-of-the-art techniques for using them in the cloudtrail analysis contexts. https://fwdcloudsec.org/