ColaSec: Narrative Defense: User Stories in InfoSec

Join us in-person or virtually for a deep dive into a cybersecurity topic at our next ColaSec meetup. Whether you're a seasoned pro or just getting started in cybersecurity, this discussion promises insights, strategies, and real-world experiences.

If you'd like to present a topic at a meetup please fill out our [Call For Presenters on ColaSec.org](https://www.colasec.org/cfp).

In-person Location:
We've moved to Conference Room M at the Richland County Public Library.

Virtual Location:
Go to our website and sign up for email or slack to get the link to join the meetup from the comfort of your home.

You can also watch the live stream on YouTube channel.

Presenter: David Burkett

Abstract: One of the most significant challenges in cybersecurity today is its approach to problem-solving. Technical forums, such as various subreddits, Slack channels, and other social media platforms, are awash with queries like "Which should I choose, CrowdStrike or S1?", "Do I need a SIEM, an XDR provider, or both?", and "What's better, Splunk or LogRhythm?". This method of seeking solutions is fundamentally flawed for identifying the best fit for an organization, as it overlooks the unique needs of each entity. It often results in allowing sales pitches to guide decisions, leading to the acquisition of the latest flashy tool rather than a solution that genuinely addresses the problem at hand.

In this presentation, we'll explore:
1. Problem Identification: Unpacking the real issue at hand, which is often not as straightforward or quantifiable as it might seem.
2. Crafting User Stories: A guide to developing user stories that capture the essence of the challenges faced.
3. Translating User Stories into Solutions: How to turn these narratives into actionable cybersecurity strategies.
4. Case Studies on Common Pitfalls: Real-world examples demonstrating why a comparative approach to selecting EDR vendors falls short and how it can lead to costly errors.

By the conclusion of this presentation, participants will be armed with a strategy that emphasizes the importance of understanding and tackling specific security challenges over succumbing to the latest trends. This approach not only fosters more effective cybersecurity tactics but also ensures that investments in security technology are both prudent and closely aligned with the organization's objectives.

Sponsors:
Exploring Information Security