Monad

?? Here’s what’s new this month at Monad! ?? OCSF Transformation - We’ve launched beta support for the Open Cybersecurity Schema Framework (OCSF). ?? Secrets Management - Centralized credential handling solution that simplifies managing secrets across tools and integrations. Update credentials once, and they propagate automatically. This is a game-changer for testing different pipeline configs! ?? New Integrations: Box Users+Events, Jira Roles+Users, Slack Users+Groups, Google Cloud Asset Inventory, and Wiz Issues. If you'd like to learn more, DM us or shoot us an email at [email protected]! Link: https://lnkd.in/dHpaz2zk

Our friends over at Anvilogic and SANS Institute recently published the 2025 State of Detection Engineering (DE) report and it's a must-read for anyone in the SecOps space. What makes the report special is that they put the voice of the DE community center stage by surveying 250+ DEs and security leaders to get a pulse on tradecraft evolution, emerging trends, and skill gaps. To no surprise, they mention data engineering 29 times (!!) in the report, underscoring its growing role in DE workflows ?? Many actionable takeaways to help detection engineering teams mature detection flows, level up skill-wise, and scale with the emerging threat landscape. ?? Check out our write up with key takeaways here: https://lnkd.in/eiKNMifG Full report in the comments. Let us know if there's anything you found surprising from the report! #DetectionEngineering #DataEngineering #SecDataOps

Early last year, in our comprehensive report on Security Operations, titled; "The Evolution of the Modern Security Data Platform”, we delved into the transformation of Security Operations Centers (SOCs) and the critical trends shaping the future of the SOC platform market. For years, Splunk had been a cornerstone within large enterprise SOCs. However, the market underwent a paradigm shift as traditional SIEMs and legacy SOC architectures gave way to the next era of cloud-native solutions. This report was created by Francis Odum. ?? Key Highlights from the Report: 1?? The Rise of Security Operations Platforms Traditional SOCs had long relied heavily on SIEMs as their cornerstone. However, the modern SOC began moving beyond SIEMs to adopt platforms that centralize detection, response, and orchestration. This next evolution of cloud-native platforms could resemble: - Security ETL Orchestrators: Cribl, Observo AI, Monad. - Multi-data SIEM Platforms: Anvilogic. - Next-gen SIEMs: Panther, Hunters. - Security Data Lakes: Securonix. - AI-driven Response & Reporting: Torq, Hunters. - XDR Platforms: Palo Alto Networks, CrowdStrike 2?? Market Trends Driving Change The SOC platform market evolved, driven by a need for: - Enhanced automation and orchestration (SOAR capabilities). - Better integration of diverse security tools and data. - Unified platforms that improve efficiency and reduce alert fatigue for security teams. 3?? Challenges Facing SOCs SOC teams faced growing challenges, including: - High operational costs. - Talent shortages in cybersecurity. - Increased complexity from multi-cloud environments and hybrid workforces. 4?? Strategic Activity in the Market Industry developments reflected this shift: - Cisco’s $28B acquisition of Splunk highlighted the strategic importance of this space. - Vendors like Anvilogic raised new funding rounds to innovate further. ?? Why This Report Matters : The future SOC architecture will look vastly different from the past, where SIEMs were the central focus of security data. Our research explored how cloud-native platforms, detection engineering, and AI-driven solutions reshaped the landscape, providing a roadmap for modernizing SOCs. ?? Read the full report here: https://lnkd.in/gX6E3x-m *** Thank you to Shayan Shafii for his contributions to this report. Thank you also to Chas Larios, Omer Singer and Alex Hurtado for their perspectives and partnership on this report. Finally, thank you to other founders like Jack Naglieri, Gil Levonai, Gurjeet Arora, and investors like Jahanvi Sardana and many others who shared their perspectives with us, as we worked on the report.

January's product release notes are live! ?? Over the past month, we've launched 10 new integrations and added support for connection tests for all inputs. This is key as it reduces the risk of common connector errors like misconfigurations?prior to deployment. New connectors include: ?? Azure Activity Logs + Entra ID logs ??? GitHub Audit Logs ???? Tines Event Logs ?? Duo Security Authentication + Admin Logs ?? Slack Users + Groups ?? MongoDB Organization Events Full post here: https://lnkd.in/eyQ97gJt #ETL #Cybersecurity #DataEngineering?

Everyone should work at a startup at some point in their career. The earlier (stage + personal age), the better. The level of exposure you get to how the world around your business operates is unmatched and gives you a life-long advantage. From seeing key engineering decisions play out to how GTM + Product are intertwined to how culture is built day in and day out. You get the bird's eye view while playing the field. The sense of urgency is contagious. You learn to make decisions with incomplete information, adapt quickly to change, and become a master at prioritization. It compresses your personal and professional time clock in the best way possible. It's not easy, but there's truly nothing like it. Huge thanks to Christian Almenar and Monad for the opportunity. 2025 is going to be EPIC (!!!) ?? ?? #Vamos

The Cybersecurity Pulse (TCP) first issue of 2025 is LIVE! ?? Key highlights: ??? Why you shouldn't trust vendor claims about getting 100% on MITRE ATT&CK Evaluations Allie Mellen ?? Master class by Jack Naglieri on what's to come next for security data storage and analytics platforms #Iceberg #SecDataOps ???? Wiz releases their 2025 Cloud Security predictions and their public facing integrations and partnerships page. Proud to be a part of WIN via Monad ?? Veracode acquires Phylum ?? SandboxAQ raises another massive round. $300M valued at $5.3B ?? .. and more.. so much more! Link: https://lnkd.in/edexv5hU

?? Happy Holidays from the Monad Team! As we wrap up 2024, we want to take a moment to thank you—our incredible community—for your support and partnership. This season, we hope you find time to recharge, reflect, and create meaningful moments with your loved ones. Stay tuned for exciting things ahead. Let's make 2025 another year to remember! ? Wishing you a safe, joyful, and restful holiday season! Love, Monad ??

This week's The Cybersecurity Pulse (TCP) is LIVE! ?? Key highlights include: ?? Palo Alto Networks, Okta, CrowdStrike, Zscaler have all recently reported very strong quarterly results. SentinelOne reports today. Much to discuss! ?? Wiz launches Wiz Defend. Keep an eye out for James Berthoty's upcoming post on this one. Guaranteed to blow your mind ?? ????♂? Monad launches Part 4 of their Data Engineering for Cybersecurity blog series. Data Transformations (Fun fact: I authored it and the first 3 parts and will be authoring the next 4-5 parts. It's one of my favorite parts of the job!) ?? SentinelOne launches AI-SPM capabilities in public beta. ?? Cyera raises $300M Series C @ $3B Valuation. Upwind Security raises $100M Series A @ $900M valuation. Next year will be wild on VC $ front me thinks. ???? OCSF joins The Linux Foundation #Adoptionnnnn ?? ... all this and more on this week's TCP! Massive thank you to our sponsors Prophet Security and Reco for supporting my writing and weekly digests. These two companies are building products that give security teams super powers. Learn more about them in issue #67 or in the comments section!

Many of the challenges that SecOps + VM teams deal with can be directly attributed to poor data quality, lack of standardization, and limited means to filter out noise. Data transformation, when done right, solves for most of these issues. Check out Part 4 of Monad's #DataEngineering for #Cybersecurity blog series to see exactly how data transformation helps bring clarity in an increasingly noisy world ????♂? This was a fun one!

Part 4 of our Data Engineering for Cybersecurity blog series is LIVE! ?? ?? In this one, Darwin Salazar, dives in on the power and critical need for data transformation in security. Key highlights include: ? Key transform types and real-world examples including filtering, flattening, mutating, and normalizing ? Most common methods for performing transformation in security ? The role and emergence of Open Cybersecurity Schema Framework (OCSF) ? In-flight v. In-store transformation and use cases for each Data transformation has the potential to make the job of SOCs, vulnerability management, GRC, AppSec, NetSec and InfraSec teams so much better. It's time we peel the curtain back and spark the conversation around it. Blog link in the comments. Check it out and let us know what you think! #cybersecurity #dataengineering #secops #grc