Masters of Data

In this episode of Masters of Data, we get into the messier side of AI adoption, tackling questions like who actually owns the output when AI gets it wrong, and whether chasing efficiency is making us forget what it means to be human in the first place. We discuss tech CEOs proudly announcing they no longer think for themselves and debate whether AI is quietly eroding our critical thinking skills. We make the case that purpose-built, narrow AI is genuinely exciting, but that no efficiency gain is worth losing the human touch that makes work, connection, and creativity meaningful. This episode is for security professionals, data practitioners, and anyone in tech wrestling with how to use AI as a tool without becoming one themselves.

On this episode of Masters of Data, we brought back GRC expert Cassandra Mooseburger to pull back the curtain on audits, and spoiler: it is far less scary than the IRS knocking on your door. We break down what actually separates a certification from an attestation from a report, how to run a prep process that does not send your engineering team running for the hills, and why the social capital you build across the business is just as important as the evidence you collect. If you have ever wondered how compliance work translates into closed deals and customer trust, this one connects those dots. This episode is essential listening for GRC and compliance professionals, security leaders, and cross-functional stakeholders in IT, engineering, and operations who want to understand why audit season exists and how to make it work for everyone.

On this episode of Masters of Data, we sat down with Steven Manley, CTO of Druva, to get the unfiltered truth about ransomware: it's not a matter of if you'll be breached, but when, and bad actors are now launching hundreds of attacks at a surprisingly low cost. We dig into why attackers lurk undetected for 200-plus days, how AI is being weaponized for everything from eerily convincing voice phishing to secretly training your own AI systems against you, and why your most protected assets are rarely what gets hit first. This episode is essential listening for IT leaders, security teams, and anyone responsible for keeping the business running when the worst-case scenario stops being hypothetical.Chapters:0:00 Introduction & Meet Stephen Manley, CTO of Druva1:20 When Ransomware Hits: What It's Like for the Victim vs. the Recovery Team5:04 What Does a Ransomware Attack Actually Look Like?7:56 How to Prepare: Building a Ransomware Response Plan11:30 Testing Your Response: Start Small, Then Scale Up14:19 Communication During an Attack: Why It's Harder Than You Think16:23 How Attackers Exploit Your Communications Infrastructure18:44 Dwell Time: Attackers May Have Been Inside for 200+ Days21:08 Are Attackers Using AI? The Growing Role of AI in Cybercrime23:04 Real Story: How Ransomware Compromised an AI System in Healthcare26:27 Why Ransomware Attacks Are Getting Cheaper & More Common28:04 Cyber Insurance: Does It Actually Pay Out?31:10 Compliance, Security Hygiene, and Convincing Your Board to Invest33:10 Three Ways to Win a Security Budget Conversation35:37 Using Backup Data for Deeper Insight Into Your Environment37:00 Final Advice: Test, Trust Nothing, and Stay Calm39:14 Wrap-Up

In this episode of Masters of Data, we buckle up and explore the staggering technological complexity behind the airline industry, from managing IoT devices across global fleets to navigating the data chaos of mergers and acquisitions. We dig into the delicate balance airlines strike between aging legacy systems and risky upgrades, and why getting that wrong isn't just costly but potentially catastrophic. We also look at how forward-thinking airlines are turning operational logs into real business wins, all while safeguarding the mountains of sensitive passenger data they collect every day.

In this episode of Masters of Data, we explore how banks and fintech companies have traded friendly neighborhood tellers for data-driven, always-on digital fortresses. We unpack everything from sophisticated phishing schemes and viral TikTok check fraud trends to the AI-powered tools that now handle the fraud detection Shirley the bank teller used to manage through sheer familiarity. We make the case that financial institutions today face more pressure than ever to be trustworthy, secure, and seamless all at once, whether their customers are logging into a sleek app or calling a landline to pay two bills a month.

In this episode of Masters of Data, we dig into the cybersecurity nightmare that is modern healthcare IT, from ransomware attacks shutting down entire hospitals to IoT medical devices running software older than some of our passwords. We explore why healthcare organizations make such attractive targets for cybercriminals, and why the combination of life-or-death stakes, skeleton-crew security teams, and Windows-95-era equipment is a recipe for chaos. We also get into the surprisingly exciting potential of AI to serve as a force multiplier for overwhelmed IT teams, and share some personal stories about using LLMs to crack health mysteries that stumped doctors for years. Doctor in the loop, always, but we are cautiously optimistic about where this is all heading.

As we gear up for RSA Conference, we give viewers a sneak peek at Sumo Logic's SOC analyst agent, which turns a 45-minute analyst investigation into a five-minute AI-powered sprint. We walk through live demos showing how the agent automatically generates queries, maps threats to MITRE ATT&CK, and hands you recommended remediation actions all without making you switch tabs or tools. We also show off MCP integration that lets teams collaborate on active investigations right from Slack, because no one should be chained to their war room when there's dinner to be had. If you're at RSA, we hope to see you at the booth for the Dojo AI challenge; if not, consider this your front-row seat.

In this episode, we dive into the wild world of 'bursty' businesses (yes, we said it) and the security headaches that come with unpredictable traffic spikes, whether you're bracing for tax season, Black Friday, or a surprise sardine TikTok going viral. We unpack the complex domino effect of onboarding and offboarding seasonal workers at scale, where handing out 'keys' now means managing thousands of access tokens and cloud permissions instead of a spare set for the back file drawer. We make the case that robust logging, behavioral analytics, and access control aren't just nice-to-haves (they're the difference between riding the wave and wiping out).

On this episode of Masters of Data, we tackle security for growing enterprises: past small business status but not quite full-scale yet. The challenge? Building effective programs with limited resources while balancing people, processes, and tools. We cover essentials like EDR, SIEM, SSO, identity management, and cloud security. The catch? Buying tools means nothing without proper implementation, tuning, and training. We explore fractional CISOs, cross-training to avoid single points of failure, and how AI supports operations.

On this episode of Masters of Data, we sit down with Beth Glowacki to explore Sumo Logic's app catalog and how it actually works in practice. Apps serve as your launch pad: pre-built integrations, dashboards, and automated alerts for various data sources right out of the box. We dig into how apps stack together for comprehensive monitoring, like pairing CloudTrail apps for both operational health and security views. Beth breaks down the importance of metadata scoping and shows how customers build custom dashboards by combining panels into a single pane of glass. We also cover AI capabilities through Mobot for natural language queries and NextGen apps that auto-update when vendor log formats change. From Kubernetes monitoring to e-commerce metrics, the app catalog bridges technical operations and business decisions.

On this episode of Masters of Data, we tackle breaking into cybersecurity. David shares his journey from welder to AppSec manager, proving that career pivots are tough but doable. We explore entry points like SOC analyst, GRC, and application security roles, noting that penetration testing gigs are fiercely competitive. AI is reshaping the landscape, making technical skills more accessible while amplifying the need for critical thinking. Networking beats degrees. Side projects and hands-on certifications matter more than credentials. We discuss role bleed, where security professionals need broader skill sets than ever, and why initiative plus continuous learning are non-negotiable.

On this episode of Masters of Data, we're joined by Eric Avery, Sumo Logic's head of infrastructure and data, to break down data pipeline management: efficiently moving massive data volumes from multiple sources to one usable location. We explore how pipelines fuel analytics and AI, the role of data transformation, and where OpenTelemetry fits in. Eric shares insights from processing 3.5 exabytes daily and how AI has reignited excitement around data. We also cover pipeline security, the shift from data lakes to AI-powered platforms, and practical digital security tips.

On this episode of Masters of Data, we break down incident response from detection through containment, forensics, recovery, and postmortem. The foundation? Comprehensive logging. Without it, you're blind. We explore building cross-functional teams and a blame-free culture where people actually report issues. Communication is key: what you tell engineering isn't what you tell executives or customers. AI is accelerating investigations, but the fundamentals still rule: proper tool access, the right people on call, and translating technical chaos into business-speak. The takeaway? Great incident response is preparation, culture, and clear communication in equal measure.

On this episode of Masters of Data, we sit down with Cassandra Mooseberger, Manager of Security Compliance at Sumo Logic, to unpack governance, risk, and compliance (GRC). Cass breaks down her three-pillar framework: governance and compliance, risk management, and trust. She reveals how GRC teams can flip from cost center to sales enabler through trust pages, automated questionnaires, and proactive support. We explore practical strategies for working with engineering: listen first, understand before changing, and skip the "rip and replace" impulse. Cass walks through risk frameworks (treat, tolerate, transfer, terminate) and how AI is transforming evidence collection and questionnaire responses. The bottom line? GRC wins when it builds bridges, not roadblocks.

In this episode of Masters of Data, we tackle why cybersecurity professionals burn out, and it's not just long hours. We explore how repetitive tasks, limited growth, and work that feels invisible drain security teams who face constant vigilance with few wins and no finish line. We discuss how high-stakes environments and rigid SLAs prevent real breaks, then share solutions: celebrate small victories, recognize contributions, prioritize physical health, and protect work-life balance. The key? Clear communication, realistic expectations, and making security's invisible impact visible.

On this episode of Masters of Data, we unpack David's new white paper on AI governance for agentic systems. He explains model context protocol (MCP) as "APIs for agents", how AI systems talk and execute tasks. The catch? Autonomous agents are insider threats that move fast and cause serious damage. David introduces the Model Control Plane (MoCop), a twelve-pillar framework designed to prevent your AI from going rogue. We cover his roadmap for security leaders to build real controls and telemetry. His advice: treat agents like interns with root access. Get ahead of this before your agents do.

On this episode of Masters of Data, Adam sits down with Zoe Hawkins and David Girvin to talk AppSec programs that don't suck. David's hot take from his 1Password and Red Canary days? AppSec is a people problem, not a tooling problem—stop being the person devs dodge at standup. We cover the essentials: build relationships first, threat model based on actual business risk (not your anxiety), and ditch the "shift left" obsession with scanning everything. Instead, start with offensive testing that finds vulnerabilities attackers can actually exploit.

In this episode of Masters of Data, we're breaking down AWS re:Invent 2025 through David's eyes (and probably a few cups of conference coffee). We dive into the massive crowds, killer customer conversations, and product demos that actually worked, because we're all about building real tech, not smoke-and-mirrors clickbait. David geeks out over Mobot, our AI tool that's making workflows smoother (not just another chatbot in disguise), and how attendees couldn't get enough of the live demos. We also throw some shade at the AI-washing epidemic and dig into why practical AI applications in security and observability actually matter. And because it wasn't all work and no play, we wrap up with highlights from our legendary Sumo Slam Jam party. Bottom line: we're feeling pretty pumped about where Sumo Logic is headed.

Not heading to re:Invent this week? Don't worry—we've got you covered. In this episode, we welcome Architect Solutions Engineer, Jake Lee, to preview the exciting new Sumo Logic tools we are showcasing in Vegas. Our new SOC analyst agent acts as an AI partner that instantly assesses incident severity and recommends next steps—no more drowning in alerts. The MCP server breaks down barriers by letting you query Sumo Logic from Slack or integrate security insights directly into your IDE. If you're heading to re:Invent, stop by the booth to see these innovations live.

In this episode of Masters of Data, we dive into how AI learns, examining both how we teach it and what it derives from human performance, as well as why context plays a crucial role in AI interactions. We break down five key components of AI training and talk about why we should view AI as a tool under human control rather than an autonomous entity. We explore the challenge of maintaining context in AI—much like our own memory struggles—and discuss methods, such as retrieval-augmented generation, that can help AI retain context more effectively.

In this episode of Masters of Data, we welcome Melissa Beck, VP of Corporate Marketing at Sumo Logic, to discuss the key differences between analyst reports. We talk about why effective communication with customers matters and how AI is evolving to enhance analyst evaluations. We also examine how analysts provide valuable market insights, acknowledging that subjectivity plays a role in product evaluations.

In this episode, we run through our beginner's guide to security tools, emphasizing the importance of people, processes, and technology. We chat about the NIST framework as a foundational resource for building security programs, highlighting key steps such as identifying and managing risks. We also discuss basic tools like password managers and multifactor authentication as essential for enhancing security, particularly against threats like phishing. Finally, we explore the integration of AI in security and its potential to improve efficiency while maintaining human oversight. Subscribe to the podcast: sumologic.com/podcast Check out sumologic.com Follow us on LinkedIn: https://www.linkedin.com/company/sumo-logic/ Subscribe to our YouTube Channel: https://www.youtube.com/user/sumologic Reach out with any questions to [email protected]

In this episode, we discuss the critical intersection of security and observability within organizations. We highlight the often contentious relationship between security analysts and SREs, emphasizing the importance of fostering a collaborative culture to effectively address incidents. All teams should focus on solutions rather than blame, as user experience is affected by both security and infrastructure issues. We explore how to break down silos, especially in the context of AI security, and encourage cross-disciplinary learning to enhance overall security practices. Subscribe to the podcast: sumologic.com/podcast Check out sumologic.com Follow us on LinkedIn: https://www.linkedin.com/company/sumo-logic/ Subscribe to our YouTube Channel: https://www.youtube.com/user/sumologic Reach out with any questions to [email protected]

In this episode, we welcome Naomi Buckwalter, Sr. Director of Product Security at Contrast Security, to chat about the evolving landscape of security threats and the dual role of AI in both facilitating and combating these challenges. We explore the increasing sophistication of modern phishing attacks and discuss how security teams must rapidly adapt to stay ahead of emerging threats. We debate the transformative impact of AI on the future job market, where personal qualities and soft skills may increasingly take precedence over traditional technical competencies.Read more about the Sumo Logic and Contrast Security partnership: https://www.contrastsecurity.com/security-influencers/application-layer-attack-investigations-in-minutes-sumo-logic-and-contrast-security Subscribe to the podcast: sumologic.com/podcast Check out sumologic.com Follow us on LinkedIn: https://www.linkedin.com/company/sumo-logic/ Subscribe to our YouTube Channel: https://www.youtube.com/user/sumologic Reach out with any questions to [email protected]

In this episode, we dive into the murky waters of AI-washing, where companies transform perfectly ordinary software into "revolutionary AI solutions" with little more than creative marketing copy. We'll give you the tools on how to separate genuine AI innovation from elaborate digital smoke and mirrors. We also tackle the very real headache of cramming shiny new AI tools into legacy systems that were built when dial-up was cutting-edge, plus why understanding AI architecture matters more than buzzword bingo. As the AI gold rush continues, we arm listeners with the knowledge to spot fools' gold from the real deal.

In this episode of Masters of Data, the hosts delve into the world of AI agents, explaining their functionality and significance. Unlike simple chatbots, agents can make decisions and perform actions, acting as executive assistants to enhance personal productivity. The discussion highlights the importance of security, collaboration, and the need for human oversight in AI development. As the landscape of AI evolves, the hosts express excitement about future tools that will further integrate AI into daily tasks, emphasizing the role of human feedback in shaping these technologies.

In this episode, we explore how AI is transforming security operations centers (SOCs) from basic log-watching teams into sophisticated threat-hunting command centers drowning in data. AI excels at processing security alerts faster than any human, but the challenge lies in balancing our growing dependence on algorithmic assistance with the irreplaceable value of human intuition in outsmarting creative attackers. From skill atrophy concerns to the art of maintaining that essential human edge, this conversation reveals why the future isn't about choosing between carbon and silicon-based defenders—it's about orchestrating the perfect partnership.

Ever tried explaining to a CFO why you need millions for something that might happen? In this episode, we dive into the delicate dance between security teams and finance departments – a partnership that's part tango, part negotiation, and entirely essential. We explore the strategic questions that actually move budget needles: What's our customer risk tolerance? How quickly can we respond when things go sideways? And perhaps most importantly – how do we have these conversations before we're explaining a breach to the board? Because the only thing worse than a security incident is trying to explain why you weren't prepared for one.

What happens when artificial intelligence starts eating its own algorithmic tail? In this episode, we dive into the surprisingly real phenomenon of "AI mad cow" where machine learning models begin cannibalizing their own outputs in an endless feedback loop of synthetic content. Join us as we unpack why this isn't just a quirky tech curiosity, but a genuine threat to AI reliability and human trust. From medical diagnostics gone rogue to the slow erosion of our critical thinking muscles, we explore how our growing AI dependency might be setting us up for some uncomfortable wake-up calls.

SOAR might sound like a superhero for security teams, but is it actually flying too close to the sun? In this episode, Adam and David unpack why security orchestration, automation, and response have been helpful… but might be headed for retirement, thanks to AI shaking up the game. They also dig into the headaches of managing clunky SOAR systems and why it’s time to rethink workflows and case management before you get left in the dust. Subscribe to the podcast: sumologic.com/podcast Check out sumologic.com Follow us on LinkedIn: https://www.linkedin.com/company/sumo-logic/ Subscribe to our YouTube Channel: https://www.youtube.com/user/sumologic Reach out with any questions to [email protected]

Between SIEMs, data lakes, and data lakehouses, the buzzwords alone could fill a glossary. In this episode, Adam and David break down the real differences between data lakes and SIEM systems and why effectively managing all that data is crucial for staying visible and secure. They also dive into how AI is shaking up the game and why picking the right tools can mean the difference between being overwhelmed and being in control. Subscribe to the podcast: sumologic.com/podcast Check out sumologic.com Follow us on LinkedIn: https://www.linkedin.com/company/sumo-logic/ Subscribe to our YouTube Channel: https://www.youtube.com/user/sumologic Reach out with any questions to [email protected]

Survival tools aren’t just for doomsday preppers; they’re now a must-have for every business trying to stay afloat in the choppy waters of modern security. Ignore them, and you could end up like the 158-year-old shipping company that got sunk by ransomware. In this episode, Adam and David explain why having security tools isn’t enough if they’re misconfigured, why execs need to steer the culture from the top, and how new tech like deepfake detectors could be the next must-pack item in your digital survival kit. Subscribe to the podcast: sumologic.com/podcast Check out sumologic.com Follow us on LinkedIn: https://www.linkedin.com/company/sumo-logic/ Subscribe to our YouTube Channel: https://www.youtube.com/user/sumologic Reach out with any questions to [email protected]

AI policy is not a yes/no question. Security isn’t here to be the morality police. Our job is to enable the business safely. Join security experts Adam White and David Girvin as they chat about the importance of using threat models, a simple framework, and five policy areas you are probably ignoring.

Sumo Logic’s 2025 Security Operations Insights report surveyed 500 IT and security leaders from enterprise organizations to uncover what’s really happening inside today’s SOCs. Join security experts Adam White, David Girvin, and Zoe Hawkins as they break down the top findings from the report and shed light on what every analyst and CISO has felt for years: the system needs a reset.Subscribe to the podcast: sumologic.com/podcastRead the full report: https://www.sumologic.com/guides/2025-security-operations-insights Check out sumologic.com Follow us on LinkedIn: https://www.linkedin.com/company/sumo-logic/ Subscribe to our YouTube Channel: https://www.youtube.com/user/sumologic Reach out with any questions to [email protected]

Join security experts Adam White, Chas Clawson, and Seth Williams as they explore how AI-first development is reshaping the way cybersecurity teams build, test, and deploy solutions. Traditional development cycles often leave critical ideas trapped in backlogs, but with Gen-AI and language models, security teams can now move from concept to prototype in hours, not months.Subscribe to the podcast: sumologic.com/podcastCheck out sumologic.com Follow us on LinkedIn: https://www.linkedin.com/company/sumo-logic/ Subscribe to our YouTube Channel: https://www.youtube.com/user/sumologic Reach out with any questions to [email protected]

You’ve been told you need a SIEM. Maybe it was your CISO. Maybe it was your auditor. Maybe your SOC is tired of stitching together logs with duct tape and Python scripts. Doesn’t matter — you’re now on the SIEM buying journey. Congratulations… and condolences. Join security experts, Adam White and David Girvin as they walk through the ultimate playbook for buying your first SIEM without lighting your budget (and your team’s morale) on fire.Subscribe to the podcast: sumologic.com/podcast Read the full blog: https://www.sumologic.com/blog/how-to-buy-your-first-siemCheck out sumologic.com Follow us on LinkedIn: https://www.linkedin.com/company/sumo-logic/ Subscribe to our YouTube Channel: https://www.youtube.com/user/sumologic Reach out with any questions to [email protected]