Socwise logo
Polyák Beatrix
05/18/2022

SOC Summit 2022

Polyák Beatrix
This year we held the SOC Summit in person in Munich on April 28 and 29, but the participants could join our conference live in Budapest or online. These two days were special for us not only because we had an event abroad for the first time, but also we received the Authorized European MSSP […]

This year we held the SOC Summit in person in Munich on April 28 and 29, but the participants could join our conference live in Budapest or online. These two days were special for us not only because we had an event abroad for the first time, but also we received the Authorized European MSSP Partner Award presented by Dietmar Rohlf on behalf of NetWitness.

"This award recognizes SOCWISE's impressive annual growth and successful geographic expansion together with RSA Netwitness - thanks to SOCWISE's outstanding achievements in provision, integration and development of managed security services enabled by the Netwitness platform," said Corné van Rooij, Sales Manager at NetWitness. He further explains: "SOCWISE's expertise and commitment to our mission act as a catalyst and help us make each day more secure than the previous one." We, who have long been users of NetWitness technology and partners with the company, received the award with great pleasure and honor.

We opened the first day of SOC Summit with Dr Sven Herpig’s presentation on security policy, whose main message was the newly formed German government will (and has to) bring about change in the country's cybersecurity policy.

After that, Ben Smith joined us virtually straight from the United States. He presented the factors for "SOC-cess" for 2022 and the upcoming years. According to him, trained and motivated employees are needed for future success in any company, not full automation.

Ralf Reinhardt was the next presenter, who used the film Pulp Fiction as an inspiration. He explained why adequate preparation for an attack is a must-have in our current times.

The next speakers were our colleagues Gergely Lesku and Everett Hulse. They presented the purple teaming method, which explained the role that artificial intelligence and automation play in cybersecurity monitoring today, yet emphasized that technology alone will not be enough in the future. According to them, it is necessary to rely on metrics that can reflect the protection capabilities not only of the devices but also of the entire organization.

The presentation was followed by Dietmar Rohlf from NetWitness, who shared valuable information about the updated NIS2. This EU directive sets out an EU framework for critical infrastructure protection at European level.

Robert Ehlert and Morgan Alexander from the QUANTUM cyber lab talked about criminal hacker organizations, how attackers act, how they integrate into companies. Three criminal scenarios are particularly popular: setting up one's own fake-company, internal perpetrator or a malicious hacker (black hat).

The afternoon was opened by Robert Wortmann from Trend Micro Germany. He talked about various non-product-specific technologies, point out the limitations of each one and also shares his own opinion about the future of detection and response technologies.

He was virtually followed by Gábor Szabó from Euro One. He talked about why it is necessary to disassemble malware and to have this practice among SOC processes.

Our next speaker, Gerhard Guenther, from metafinanz Informationssysteme GmbH, spoke live about DORA - the new European regulation for the IT sector in the financial system.

Then it was the turn of Thomas Maxeiner who has virtually introduced us to the autonomous security operations center at Paolo Alto Networks.

Afterwards, Péter Szilágyi joined this year's SOC Summit in virtually. He spoked about the teamwork in SOC and about the main factors generating tension & frustration between the teams and how to develop the culture of DevSecOps.

Last but not least, Péter Hunyadi gave a presentation to show how industry players and the security operations team are responding to threats - whether IT or OT is the target.

Finally, with the help of our moderator Simon Diez, we had a panel discussion where Gerhard Guenther, Christoph Bechtel, Péter Sajó, Kay Bandemer, Ralf Reinhardt and Robert Ehlert summarised the event's most interresting and important takeaways.
We also had a special German session on Friday, our registrants could participate in this just online.

Our director, Péter Sajó, summed up our event as follows: "It was great to be in Munich. A great event with great speakers and interesting insights. After a long time, it was great to finally discuss together with colleagues in one room. Having been a market leader in our home country for the past 17 years, this event was the ideal kick-off for our subsidiary in Germany. " All in all, we have a fantastic 2 days behind us and can’t wait to continue!

crossmenu