Raffael Marty - Press, Presentations, and Papers

Press. | Presentations. | Papers.

Presentations (Slideshare)

Moderator: Transforming Threat Hunting with Generative AI, The Hive.
Host: The MSP Threat Briefing Series, ConnectWise, November 2023.
ITNation Connect 2023 Product Keynote, ConnectWise, November 2023.
ITNation Secure 2023 Keynote, ConnectWise, June 2023.
Exploring the Defender's Advantage Right of Boom, February 2023.
ITNation Secure 2022 Keynote ConnectWise, June 2022.
Extended Detection and Response (XDR) - An Overhyped Product Category With Ultimate Security Potential IoTSSA Austin, March 2022.
ITNation Connect 2021 Keynote ConnectWise, November 2021.
How To Drive Value with Security Data LogPoint ThinkIn User Conference, June 2021 (video).
Automation of Security Metrics and Reporting CCTX 5th Annual Collaboration Symposium, February 23, 2021
Human Centric Roadmap to Secure Digital Transformation, iSMG Financial Services Boardroom, January 12, 2021
A Necessary Change in the Data Protection Mindset, Data Protection World Forum, October 22, 2020
Indicators of Behavior (IOBs) - The Necessary Leap in Security Intelligence, Interop 2020, October 5
Panel on "The Use of AI by Hackers", AI4Cyber (video), May 2020
Panel on Use of AI for Cybersecurity, at Building an AI Powered Intelligence Community, Arlington, VA, USA, March 2020 (blog post) (video)
Panel on Graph Analytics, at Graph the Planet, San Francisco, CA, USA, February 2020
Panel on Privacy in Data Science, at Data Science Salon, Austin, TX, USA, February 2020 (video)
Panel on Smartcity Security, at Global Cybersecurity Forum, Riyadh, Kingdom of Saudi Arabia, February 2020
Beyond 2020 - Will We Learn From Our Mistakes?, at SIGS Switzerlnd, Zurich, Switzerland, January 16 2020
Artificial Intelligence - Time Bomb or The Promised Land?, at National Cybersecurity Center Cyber Symposium, Colorado Springs, September 2019
Understanding the "Intelligence" in AI, at AI 4 Cyber, New York City, April 2019 (video) (blog post)
"AI & and ML in Cyber Security - Why Algorithms are Dangerous, at BlackHat US in Las Veags, USA, August 2018 (video)
"AI & and ML in Cyber Security", at IANS Forums in NYC, LA, Chicago, Washington D.C., 2018
"AI & ML in Cyber Security - Why Algorithms Are Dangerous", at Kaspersky SAS 2018 in Cancun, Mexico, March 2017.
"Delivering Security Insights with Data Analytics and Visualization", Keynote at ACSAC 2017 in Orlando, FL, December 2017.
"AI & ML in Cyber Security - Welcome Back to 1999 - Security Hasn't Changed", Keynote at BSides Vancouver, CA, March 2017.
"Big Data Techniques in Infosec: Collect, Analyze, Hunt, and Secure", IANS Forums Washington, New York, Chicago, 2016.
"Threat Intelligence: 10 Tips to Turbocharge Feeds", IANS Forums Washington, New York, Chicago, 2016.
"Security in Big Data Systems", XLDB - Extreme Large Databases, Stanford, CA, USA, May 2016.
"Creating Your Own Threat Intel Through Hunting & Visualization", HoneyNet Workshop 2016, San Antonio, TX, USA, May 2016.
"Creating Your Own Threat Intel Through Hunting & Visualization", Kaspersky Security Analyst Summit, Tenerife, Spain, February 2016 (video).
"Big Data & Security: Mountains instead of Bank Vaults", Panel Moderator, Greater Zurich Area Security Event, Menlo Park, USA, September 2015.
"Visualization in the Age of Big Data", HoneyNet Project Workshop, Stavanger, Norway, May 2015. (video)
"Big Data Visualization, London, UK, February 2015
"Security Visualization - Why Is It So Hard?, ISF 2014, Shanghai, China.
"Visualization for Security, BlueCoat, Sunyvale, USA, August 2014.
"Heatmaps - Why is Security Visualization So Hard?, Area41, Zurich, Switzerland, June 2,3 2014.
Heatmaps - Why is Security Visualization So Hard?, HoneyNet Workshop, Warsaw, Poland, May 2014.
DAVIX 2015 - HoneyNet Workshop, Warsaw, Poland, May 2014.
"Cloud - Big Data - Security", iTech Gulf 2014, Bahrain, April 2014.
"iEntrepreneur - Why Not To Start Your own Company", iTech Gulf 2014, Bahrain, April 2014 (conference summary video)
"Cyber Security - How Visual Analytics Unlock Insight", Conference on Knowledge Discovery and Data Mining (KDD), Chicago, IL, August 13, 2013 (video)
"I am Raffy - I do Viz", Norman Security Researcher Meetup, San Diego, CA, March 13, 2013
How Big Data, Data Mining, and Visualization Enable Security Intelligence - 2013 Honeynet Project Workshop, February 10, 2013.
"Security Intelligence for Incident Response" - Incident Response Meetup, January 31, 2013
"Security intelligence, big data, visualization, and data mining", Security Chat in Zurich, Switzerland, December 12, 2012
Big Data and Security Intelligence - Bay Area's Big Data Think Tank
Visual Analytics and Security Intelligence - BrightTalk Webinar, December 5, 2012
"Security Intelligence", OpenDNS Security Researcher Meetup
Security Visualization - Let's Take A Step Back - VizSec 2012 Keynote, October 15, 2012
Visual Analytics and Security Intelligence - Big Data in Action - BrightTalk Webinar, September 18, 2012 (guest2/testing)
Visual Analytics and Security Intelligence - Nordic Security Conference, August 30, 2012
Wikileaks/Manning Panel, IEEE/SADFE 2011, May 26, 2011.
"Mining Your Logs - Gaining Insight Through Visualization", Google Tech Talk, Mountain View, March 2011. (video)
"Cloud Application Logging for Forensics", SAC'11, 2011, TaiChung, Taiwan, March 2011.
"Visualizing the Malicious Insider Threat", HICSS 2011, Kuwaii, January 2011.
"Security Visualization - State of 2010 and 2011 Predictions", SANS Incident Detection and Log Management Summit, Washington, D.C., December 2010.
"Cloud Security Visualization", DeepSec 2010, Vienna, Austria, November 2010.
Swiss Alumni Mix Up, SwissNex, San Francisco, November 2010.
"Emerging Threats: The Cloud Problem", Congreso Seguridad en Co³mputo201, Mexico City, Decmeber 2010.
Log Visualization in the Cloud, BrightTalk, August 2010.
Cloud Log Analysis and Visualization, Recontres Mondiales Du Logiciel Libre, Bordeaux, France, July 2010.
The Realities of Starting a Security Company, Source Boston, 2010 (Panel Video)
Applied Security Visualization Workshop, AusCERT, Gold Coast, Australia, May 2010
Log Analysis and Visualization Workshop, HoneyNet Alliance, Mexico City, April 2010
University of Advancing Technology, Tech Forum, November 2009.
Webinar: "SIEM 2.0: Integrating Five Key Requirements Missing in 1st Gen Solutions", IANS Security, October 2009.
KeyNote at ChicagoCon, Chicago, May 8-9 2009.
"IT Data Analysis and Visualization", Peer-to-peer session at RSA, San Francisco, April 2009.
"IT Data Search Engine - Splunk", IANS Security event, Washington D.C., March 2009.
"SecViz 007", BCS 2008, Jakarta, November 2008.
"SecViz 007", IS Summit 2008, Hong Kong, November 2008.
"IT Data Visualization", SUMIT 08, University of Michigan, October 2008 (audio).
"IT GRC Visualization", Triangle InfoSeCon, Raleigh, North Carolina, October 2008.
"SecViz 007", BA-Con Argentina, Buenos Aires, September 2008.
Panel discussion at VizSec, Boston, September 2008.
DAVIX presentation at VizSec, Boston, September 2008.
"Visualization Research 2.0", FIT-IT, Graz, Austria, September 2008.
"DAVIX Visualzation Workshop", DefCon 16, Las Veags, August 2008. (video).
"Recent Trends in Security Visualization", RSA Conference, San Francisco, April 2008.
"All the Data That's Fit To Visualize", SOURCE Boston, March 2008 (video).
"Applied Security Visualization", MIT Lincoln Labs, Boston, December 2007.
"Insider Crime Visualization", BCS '07, Jakarta, Indonesia, November 2007.
"Computer Crime - A Data Centric View", CSI Computer Crime and Security Survey 2007 event, San Francisco, October 2007.
"Insider Crime Visualization", Hack In The Box, Kualalumpur, Malaysia, 2007. (video)
"Insider Threat Visualization - The Visual Conviction", First 2007, Seville, Spain, 2007.
"Visualization of Security Data", Bellua BCS, Jakarta, Indonesia, 2006.
"Visual Log Analysis - The Beauty of Graphs", DefCon, Las Vegas, 2006 (video).
"Visual Event Analysis with ArcSight", ArcSight User Conference 2006.
"A Visual Approach to Security Event Analysis",EuSecWest, London, 2006.
"Visual Security Event Analysis", RSA Conference, San Jose, 2006.
"What defineds IDS? Does IDS really help?", RAID Conference, Seattle, 2005.
"A Visual Approach to Enterprise Security Management", Government Technology Conference (GTC) East, Albany, NY 2005.
"Visual Security Event Analysis", DefCon, Las Vegas 2005 (video).
Common event format standard, Global Security Consortium workshop, Washington D.C., 2005.
"Visual Security Event Analysis with ArcSight", ArcSight User Conference 2005.
GCIA paper (Visualization of TCPdump data), 2005.
Security Information Management, Security Colloquium, IBM Research, 2004.
Intrusion Management, the Zurich Information Security Center, Federal Institute of Technology, Switzerland, April 2003.
"Design of an Intrusion-Tolerant Intrusion Detection System", Information Society Fifth Framework Programme, 2003.
"Thor: A Tool to Test Intrusion Detection Systems by Variations of Attacks", 2002.
"Optimization of Mix Components in an Anonymity Network" , 2001.

Press and Articles

November 2024 BONUS: Raffael Marty - Getting Inside the Mind of the Hacker ISF Podcast
November 2024 International Fraud Awareness Week 2024 - Cybersecurity Experts Chime In VMBlog
August 2024 26 essential book recommendations by and for IT leaders CIO Magazine
June 2024 Hallway Chat at IT Nation Secure with Raffael Marty, EVP and General Manager of Cybersecurity All Things MSP.
June 2024 Raffael Marty on MSP Cybersecurity: Insights from IT Nation Secure IT Business Podcst at ITNation Secure 2024.
June 2024 Cultural Shifts and Security Insights with Raffy Marty Technology, Business, and Science - Joey Pinz Discipline Conversations, Podcast at ITNation Secure 2024.
June 2024 Cyberattack Risks Keep Small Business Security Teams on Edge, Security Boulevard
May 2024 Password Best Practices and Tips for MSPs, ChanelE2E
May 2024 World Password Day 2024: Insights from Cybersecurity Experts, VMBlog
April 2024 ConnectWise 2024 MSP Threat Report: Unveiling Key Findings on Top Cybersecurity Threats and Emerging Trends
February 2024 How to Stay Safe Online: Expert Advice and Must-Follow Tips
February 2024 ConnectWise's Raghu Bongula, Raffael Marty, and Kaela Vanden Berg Recognized as 2024 CRN Channel Chiefs
November 2023 Episode 44 of Twins Talk Tech Leadership Twins Talk It Up
April 2023 Raffael Marty On How MSPs Can Better Harness Their Data Amid A Turbulent Threat Landscape Expert Insights Podcast.
March 2023 Research from the week beginning 27th February 2023 Enterprise Times UK
March 2023 The State of Managed Service Providers (MSPs) Enterprise Security Weekly - video interview
March 2023 MSP = MORE SECURITY PLEASE? THE STATE OF MANAGED SERVICE PROVIDERS - RAFFAEL MARTY - ESW #307 SC Media
February 2023 Independent Research Firm Study Finds ConnectWise Cybersecurity Solutions Deliver 386% ROI Over Three-Year Period InvestorsObserver.
February 2023 Ballistic Ventures Appoints Expert Cybersecurity GTM Advisors.
February 2023 Right of Boom Live Blog 2023 MSSP Alert.
February 2023 Safer Internet Day 2023: 19 Experts Share Best Practices for Online Safety spiceworks.
February 2023 Three Members of ConnectWise Team Honored as 2023 CRN Channel Chiefs.
January 2023 Happy Data Privacy/Data Protection day betanews.
January 2023 Industry Experts Share Their Security Predictions for 2023 Cyber Defense Magazine
November 2022 Getting inside the mind of the hacker podcast with Steve Durbin from Information Secrity Forum (ISF)
November 2022 ConnectWise IT Nation Day Two Reveals New Partnerships and Expanded Offerings Channel Futures
September 2022 Insider Threat Awareness Month - one click is all it takes... fe news
September 2022 Solving the unique cybersecurity challenges facing MSPs podcast with T_HQ technology and business
June 2022 ConnectWise Cybersecurity GM: You Can Never Be 100 Percent Secure CRN - The ChannelCo
June 2022 Bitdefender and ConnectWise Deliver Enhanced Threat Prevention, Detection and Response Capabilities for Technology Service Providers Yahoo News
June 2022 ConnectWise Rebrands Cybersecurity Products for MSPs ChannelE2E
June 2022 ConnectWise Shares Business Strategies to Bolster Security at IT Nation Secure Industry Analysts
June 2022 ConnectWise IT Nation Secure 2022 Live Blog: MSP Security News Updates ChannelE2E.
March 2022 ConnectWise Talks Security MSPAlliance PodCast with Charles Weaver.
February 2022 ConnectWise Expands Collaboration with Intel to Further Strengthen Cybersecurity for SMBs Industry Analysts, Inc.
February 2022 Business Email Compromise: A Guide to Protecting Yourself After a BEC Attack Disaster Recovery Journal.
February 2022 ConnectWise Forms New General Manager-led Business Units and Appoints New CISO to Speed Innovation and Improve Partner Experience.
December 2021, MSPs need to keep pace with a changing cyber threat landscape TechWire Asia.
November 2021, ConnectWise - Security Keynote (video).
November 2021, Vicarius - The Security Show (with video).
September 2021, September is National Insider Threat Awareness Month.
September 2021, Inside-Out: During National Insider Threat Awareness Month, Experts Recommend How To Protect Sensitive Data From Within.
July 2021, HOW AI WILL CHANGE HACKING: THE GOOD AND THE BAD EC-Council Panel discussion (video).
July 2021, Announcing the AI Innovation Awards winners at Transform 2021.
June 2021, ConnectWise Names New SVP of Product Management for Cybersecurity.
June 2021, Talent - MSP Security Software.
March 2021, Metric of the Month: Asset inventory with Raffael Marty, Panaseer blog.
March 2021, The Future of Cybersecurity, Podcast hosted by CIO Classified
February 2021, An Avengers approach to cybersecurity is not fantasy, it's compulsory, SC Media, The Cybersecurity Source
November 2020, Inherent Bias in Machine Learning, Security Middle East & Asia
November 2020, Inherent Bias in Machine Learning, Entrprise IT World
November 2020, Inherent Bias in Machine Learning, VMBlog
October 2020, Future Insights - Inherent Bias in Machine Learning, Forcepoint Blog
May 2020, 6 Things to Do After Implementing Cybersecurity AI for Alert Management, Security Intelligence.
April 2020, Use of AI for Cyber Security in the Intelligence Community â Notes from the INSA Spring Symposium, Forcepoint Blog
April 2020, Smart City Panel Discussion at the Global Cybersecurity Forum in Riyadh, Forcepoint Blog
March 2020, RSA 2020 Conference Recap: Unpacking the Human Element, Retail & Hospitality ISAC
February 2020, IT Security changes 2019 and new challenges in 2020, SIGS Switzerland
January 2020, Data trends that matter in 2020, Data Science Salon
November 2019, The Evolution of Big Data with Raffael Marty, VP of Research and Intelligence at Forcepoint, I.T. Visionaries.
October 2019, Eight new Greater Zurich Honorary Ambassadors, Greater Zurich Area
October 2019, Eight new Greater Zurich Honorary Ambassadors, WV News
June 2019, Undertsanding the Intelligence in AI, Forcepoint Blog.
June 2019, The Challenges of Cyber-Security with Forcepoint in 2019, Irish Techn News.
May 2019, How Machine Learning Can Help Prevent Cyber, BuiltIn
May 2019, DtSR Episode 345 - RaffCon the Podcast, Down The Security Rabbithole Podcast
March 2019, The Cognitive Science Behind Cybersecurity, American Security Today.
March 2019, Unter ambitionierten Menschen: Ein Wiler im Silicon Valley, Tagblatt.
January 2019, 2019 Predictions - the year ahead for cybersecurity, ITPortal.
December 2018, Forcepoint's Seven Cybersecurity Predictions for 2019, American Security Today.
September 2018, How AI Can Help Stop Cyberattacks, Wall Street Journal.
August 2018, A Look Back at Hacker Summer Camp: Black Hat & DEF CON 2018, Forsythe Focus.
August 2018, AI for cybersecurity: Friend or foe?, T_HQ technology and business
August 2018, Black Hat 2018: 12 Executives On The Most Overhyped Cybersecurity Trends Today, CRN
August 2018, Does machine learning for cybersecurity live up to the hype?, Enterprise Insights
August 2018, AI for cybersecurity is a hot new thing - and a dangerous gamble, MIT Technology Review
August 2018, IoT security: New AI, ML, 5G, WingOS, satcom risks identified, Internet of Business
August 2018, AI for cybersecurity is a double-edged sword, Blouin News
August 2018, Role of Humans and Technology in CyberSecurity, Repsond Software Podcast with Steve Dyer
August 2018, Black Hat Day 2 Coverage Centers Around Mobile Sec, AI & ML, Cyber Security Hub.
August 2018, How algorithms can harm cybersecurity, Fifth Domain
July 2018, Trusting Tech, Bit by Bit, Thrive global
June 2018, The big data revolution shaping the role of traditional IT professionals, Churchill Frank
April 2018, Respond Software Introduces Malware Monitoring and Analysis as a New Skill for Its Respond Analyst, BusinessWire
March 2018, Be Careful Using Machine Learning in Security, Decipher
Janaury 2018, AI in Cybersecurity: Where We Stand & Where We Need to Go, Dark Reading
Janaury 2018, AI and Machine Learning in Cyber Security - What Zen Teaches About Insights, Towards Data Science
December 2017, Er kaempft mit schlauen Computern gegen Viren, Frankfurter Allgemeine, Germany
September 2017, Raffael Marty Discusses Advancing Security Analytics With Respond Software, Respond Software
July 2017, Interview: KI und IT-Security - zwischen Hype und Realitaet, Computerworld Switzerland.
May 2017, KPMG - Clarity on Cyber Security, Interview KPMG Switzerland, pages 32-35
March 2017, Podcast: Raffy Marty on the Truth About Machine Learning, AI and Advanced Analytics in Infosec, IANS Podcast.
February 2016, Podcast: Big Data, SIEM, Visualization, IANS Podcast.
January 2016, Article on Best Practices for Managing a SIEM, IANS Portal.
December 2015, Hier entsteht die Zukunft, NZZ am Sonntag, Switzerland.
August 2015, Visual Analytics And Threat Intelligence With Raffael Marty (video), BlackHat 2016 - DarkReading.
August 2015, Creating You Own Threat Intelligence Through Hunting and Visualization, DarkReading.
April 2015, Security Professionals Stymied by Outdated Visualization Tools, Wallstreet Journal Blog.
January 2014, PixlCloud CEO Raffael Marty on the importance of security visualisation, DeveloperTech
December 2013, 8 Effective Data Visualization Methods For Security Teams, DarkReading
May 2013, Entrepreneur of the week, Entrepreneur Week
September 2012, InfoSec Institute Interview
December 2011, 10 Creative Challengers - MISC creative issue
September 2011, Winning Combinations: Putting Data and Design Together
December 2010, Voices in the Cloud â Raffael Marty COO of Loggly on Cloud Chasers
November 2010, LogChat Podcast #3
February 2011, Proposed cloud-log standard sparks controversy
October 2010, Logs, Clouds and Open Source, Oh My
September 2010, When clouds attack
September 2010, When Clouds Attack: 5 Ways Providers Can Improve Security IDG - Computerworld.
August 2010, Replay Solutions Launch ebiz.
May 2009, Applied Security Visualization Ethical Hacker Network, JP Bourget.
February 2009, Getting Started With Visualization ITWorld
January 2009, Security book chapter: Applied Security Visualization TechTarget
October 2008, Interview with Stephen Ibaraki
October 2008, Interview recording with Stephen Ibaraki (Audio)
October 2008, "Tough economic climate can heighten insider threat" Article by Jaikumar Nijayan, ComputerWorld
August 2008, Security visualization helps make log files work, Article by Robert Westervelt
August 2008, Security Wire Weekly: Security Visualization, Interview with Robert Westervelt from TechTarget (audio).
August 2008, "Networking data visualization not just for pointy-headed bosses", Interview with Michael Morisy.
August 2008, Book Extract: Networking data visualisation explained
August 2008, Network Security Podcast, Interview with Martin McKeay at DefCon 2008. (Audio)
July 31 2008, Mentioned in Implementing a Web Application Firewall with ModSecurity
July 30 2008, San Francisco Belediyesi Hack VakasÄ±: Denetim Neredeydi?, turk.internet.com, Andy Patrizio.
July 23 2008, San Francisco Hack: Where Was the Oversight?, InternetNews.com, Andy Patrizio.
June 30, 2008 Blended Attacks using Social Engineering Podcast, ITProPortal.com, I am interviewing Peter Wood.
June 6 2008, Converging IDS, IPS and the Rest of Security
June 2008, Security Visualization: What You Don't See Can Hurt You
April 9 2008, RSA 2008 Raffy Marty describes Splunk's search technology for IT infrastructures (podcast)
March 17, 2008, Marketwire: RedSeal Systems to Present at RSA 2008.
January 16, 2008, InformIT Bridging Security and Visualization (video).
January 9, 2008, InformIT Applied Security Visualization (video) discussion of the upcoming book.
Septemer 22, 2007, Michael Rash Linux Firewalls Book endorsement.
August 3, 2007, Ben Chai Bar Talk on Visualization (audio).
June 22, 2007, Cubing Security Event Logs to make Realtime Analysis Possible.
June 21, 2007, Managing Security Log Files
May 23, 2007, Ben Chai FIRST Interview with Raffael Marty from Arcsight (audio).
April 2005, China's Zombie PCs
April 2005, Businesses Snub Windows Fix
March 2005, Microsoft's security card
October 2001,Article in the St. Galler Tagblatt of October 31st 2001.

Papers

Raffael Marty, "Cloud Application Logging for Forensics", SAC'11 March 21-25, 2011, TaiChung, Taiwan, ACM 978-1-4503-0113-8/11/03.
Kara Nance, Raffael Marty, "Identifying and Visualizing the Malicious Insider Threat Using Bipartite Graphs", HICSS 2011.
Challenge 5 of the Forensic Challenge 2010 - Log Mysteries, May 2010.
DAVIX gegen Goliath, Jan P. Monsch/Raffael Marty/Christoph Puppe, iX special Herbst 2008 Sicher im Netz
Security Visualization - Learning From The New York Times, a video produced for Source Boston 2008.
My GCIA paper. This paper shows how I analyzed a dataset given by SANS. I used graphing techinques, GraphViz and other tools, to automatically generate visual images of the dataset. I was a bit too enthousiastic and wrote way too much. The additional chapters are therefore published here.
I was one of the co-authors of Design of an Intrusion-Tolerant Intrusion Detection System, a long-term research project funded by the European Union under the Information Society Fifth Framework Programme.
NIST 800-41, contributed to the Guidelines on Firewalls, and Firewall Policy.
NIST 800-92, contributed to the Guide to Computer Security Log Management
Thor: A Tool to Test Intrusion Detection Systems by Variations of Attacks.
My second term project I was working on was to improve an anonymity network by adding so called mixes. Read more on the Mixer page.
My first term project I wrote at the Institute of Robotics at the ETH. My task was to develop a device driver for a PCMCIA Adapter and on top of that I had to implement the FAT-Filesystem in order to access ATA-compatible drives. Check out the special page to find out more.
During a seminar that I attended while studying computer science, I worked together with Robert Hass on the topic: "IP over Everything". It's about the network layers IP works on, with a strong emphasis on the core-network technologies. Further we present a couple of services which use IP and what functionalities these services will demand from IP. In the services chapter I wrote a paragraph about security in the near future and what criterias the IP protocol will have to fullfill. Further there is another interesting chapter about VPNs. The presentation is available online as well.