
Cloud Security Podcast
3w ago·46m
The 4 Pillars of AI SOC:From Threat Hunting to Vibe Hunting
Threat hunting has officially evolved into "vibe hunting". However, if your AI security tools lack the right semantic context, they might be doing more harm than good.
In this episode, Ashish sits down with Aqsa Taylor, Chief Security Evangelist at Exaforce, to discuss the rapidly changing landscape of Security Operations Centers. Aqsa explains how her team coined the term "vibe hunting" after autonomously tracking IOCs and exposure windows during the nationwide attack. We also explore the limitations of upstream detections, highlighting complex threats like the HackerBot Claw pull-request manipulation, TeamPCP NPM supply chain attacks, and APTs posing as fake employees on Google Workspace.
If you are navigating the noise of the 54+ new AI SOC startups, Aqsa breaks down the 4 Pillars of an AI SOC (Triage, Detection, Investigation, and Response) and speaks to "Build vs. Buy" debate regarding internal security tooling.
Guest Socials - Aqsa's Linkedin
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
-Cloud Security Podcast- Youtube
- Cloud Security Newsletter
If you are interested in AI Security, you can check out our sister podcast - AI Security Podcast
Questions asked:
(00:00) Introduction to AI SOC and Vibe Hunting(02:40) Aqsa Taylor’s Background at Twistlock, SACR, and Exaforce(03:40) The Origin of "Vibe Hunting" and the Iran Striker Attack(09:30) Why AI Hurts Without Context: The HackerBot Claw Attack(12:30) Hunting North Korean Fake Employees on Google Workspace(14:20) SaaS Detections and the TeamPCP NPM Supply Chain Attack(18:40) Navigating the Noise of 54+ AI SOC Startups(20:30) The 4 Pillars of an AI SOC: Triage, Detection, Investigation, Response(28:40) Automating Response: Containing Credential Stuffing Attacks(33:00) The Build vs. Buy Debate for Internal AI SOC Tooling(39:30) Building Confidence in AI with Semantic Knowledge Graphs(44:20) Fun Questions: Content Creation, Family, and Korean BBQ
Resources spoken about during the episode:
The Force Multiplier - Exaforce Substack
Its SOC Easy! Podcast
In this episode, Ashish sits down with Aqsa Taylor, Chief Security Evangelist at Exaforce, to discuss the rapidly changing landscape of Security Operations Centers. Aqsa explains how her team coined the term "vibe hunting" after autonomously tracking IOCs and exposure windows during the nationwide attack. We also explore the limitations of upstream detections, highlighting complex threats like the HackerBot Claw pull-request manipulation, TeamPCP NPM supply chain attacks, and APTs posing as fake employees on Google Workspace.
If you are navigating the noise of the 54+ new AI SOC startups, Aqsa breaks down the 4 Pillars of an AI SOC (Triage, Detection, Investigation, and Response) and speaks to "Build vs. Buy" debate regarding internal security tooling.
Guest Socials - Aqsa's Linkedin
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
-Cloud Security Podcast- Youtube
- Cloud Security Newsletter
If you are interested in AI Security, you can check out our sister podcast - AI Security Podcast
Questions asked:
(00:00) Introduction to AI SOC and Vibe Hunting(02:40) Aqsa Taylor’s Background at Twistlock, SACR, and Exaforce(03:40) The Origin of "Vibe Hunting" and the Iran Striker Attack(09:30) Why AI Hurts Without Context: The HackerBot Claw Attack(12:30) Hunting North Korean Fake Employees on Google Workspace(14:20) SaaS Detections and the TeamPCP NPM Supply Chain Attack(18:40) Navigating the Noise of 54+ AI SOC Startups(20:30) The 4 Pillars of an AI SOC: Triage, Detection, Investigation, Response(28:40) Automating Response: Containing Credential Stuffing Attacks(33:00) The Build vs. Buy Debate for Internal AI SOC Tooling(39:30) Building Confidence in AI with Semantic Knowledge Graphs(44:20) Fun Questions: Content Creation, Family, and Korean BBQ
Resources spoken about during the episode:
The Force Multiplier - Exaforce Substack
Its SOC Easy! Podcast
Start Free Trial14 days free
Transcript
The full transcript is available with a free trial.
This is one of 120M+ episodes across 700K+ channels — fully transcribed, searchable, and queryable with AI on Matterfact.
14 days freeCancel anytime
Full transcriptsAI Q&ADeep search
Why Matterfact
Built for investment professionals
Executives are more candid on podcasts than earnings calls. Matterfact makes those conversations searchable, readable, and queryable with AI.
120M+episodes transcribed
Jensen Huang: "The demand for accelerated computing is incredible..."
Host: "How do you see AI changing the semiconductor landscape?"
Jensen: "Every data center is going to be accelerated..."
Start your free trial
Every day you wait, your competitors are finding
edge in conversations you're not hearing.
Full access to 120M+ transcribed episodes, AI-powered search, and unlimited Q&A — free for 14 days.
14 days free · Cancel anytime