Justin Erdman, profile picture
Uploaded byJustin Erdman
266 views

The Agile SOC @SANS SOC Summit 2017

The document discusses adopting an Agile approach to security operations. It describes Agile as an iterative software development methodology based on principles of collaboration and adaptation. Two common Agile frameworks are then explained - Scrum, which uses sprints, daily standups and retrospectives; and Kanban, which focuses on visualizing and limiting work in progress. Challenges of shifting to Agile are noted, such as cultural changes and maintaining business as usual, but benefits include improved workflow, predictability and resilience to change. Resources for implementing Agile using tools like Jira are also provided.

Embed presentation

The Agile SoC Get the most from your security team
About me I am Justin Erdman Security Engineer @ Cybereason Unapologetic Blue Teamer justin.erdman@cybereason.com Twitter: @elorionsec
Agenda ✓ What is it? ✓ Origin Story ✓ Why Agile? ✓ Core Principles / Elements ✓ The Real World ✓ Challenges ✓ Getting Started
““Agile is not just a methodology, but a set of principles and philosophy.” - Pearl Zhu
Agile…Huh? ✓ Set of principles for software development under which requirements and solutions evolve through the collaborative effort of self-organizing cross-functional teams ✓ Advocates adaptive planning, evolutionary development, early delivery, and continuous improvement, and it encourages rapid and flexible response to change
In the Beginning… ✓ 1950’s – IBM started using iterative & incremental software development methods ✓ 1970’s - Evolutionary project management & adaptive software development ✓ 1990’s - Rapid application development, extreme programming, scrum ✓ 2001 - The Manifesto for Agile Software Development
The Skinny Responding to change Following a plan Rapid iterations Big-Bang campaigns Testing & data VS Opinions & conventions Many small experiments A few large bets Individuals & interactions One size fits all Collaboration Silos & hierarchies
The Flavors Du Jour ✓ Scrum ✓ Kanban
Scrum! ✓ Iterative & incremental process for structuring work ✓ Leverages commitment as change agent ✓ Face-to-face communication / close online collaboration ✓ Gamification of work
Scrum-ptious ✓ Small team spending a short time building small things ✓ Time boxed & cross-functional teams ✓ Prioritized product backlog ✓ Three roles - product owner, scrummaster, & team ✓ Team velocity based ✓ No new items mid-sprint ✓ Scrum board reset every iteration ✓ Work only on those items that fit into the iteration ✓ Daily stand-ups
Roles & Ceremonies ✓ Roles Product Owner ScrumMaster Team ✓ Ceremonies Sprint Planning Daily Stand-up Sprint Review Sprint Retrospective
The Quick & Dirty On Scrum ✓ Product owner creates a prioritized list ✓ team selects top item(s) from backlog ✓ Sprint (2-4 weeks) — team meets each day to assess progress ✓ Scrummaster keeps the team focused ✓ Hand work to customer / show to a stakeholder ✓ Sprint review & retrospective ✓ Rinse & repeat
Scrum Workflow
Kanban! ✓ Based on 3 basic principles Visualize what you do today (workflow) Limit the amount of work in progress (WIP) Enhance flow ✓ Plan – Do – Study – Adapt (PDSA) approach
You Can Kanban ✓ Work split into pieces ✓ Limited in progress items for a specific workflow ✓ Not timed boxed ✓ No prescribed roles ✓ New items can be added anytime within the pre-decided limit ✓ Board not reset & can be changed by anyone on team ✓ Story points & velocity not used ✓ No prescribed product backlog ✓ Daily stand-ups common
Kanban Board
Our Story Welcome to our crazy world
Change…Why? ✓ Better organization of process improvements ✓ Prioritization of high impact items ✓ Increased work throughput & (some) predictability ✓ Easier to track planned & handle unplanned work ✓ Better resilience to changes ✓ Minimized planning & coordination ✓ Greater ability to gauge growth over time
You like Sticky Notes…Right? ✓ Sprint zero 100% sticky notes ✓ No speed record attempts….yet ✓ Brain training ✓ Gamification of work ✓ Work to establish realistic team velocity ✓ Reinforce team mentality
Evolution ✓ Sticky Notes to Jira ✓ More realistic in sprint velocity ✓ Honest & direct team communication / feedback ✓ Full recognition of importance of ceremonies ✓ Less “I” & a whole lot more “team” ✓ Ask for help
Scrum Backlog
Active Sprint
Sprint Burn-down chart
Sprint Retrospective
Challenges & Setbacks ✓ Moving to Scrum calls for a culture shift ✓ Establishing a groove – training is necessary ✓ Makes it difficult not to be a team player ✓ Breaking down classic silos ✓ Accountability ✓ Distraction from BAU – Discipline!
Resources / Tools ✓ Tools Jira Trello ServiceNow – Visual Tasks Boards VersionOne ✓ http://www2.cprime.com/Agile-Impeditments-Webinar ✓ https://www.cprime.com/resources/what-is-agile-what-is-scrum ✓ https://www.atlassian.com/agile/how-to-do-scrum-with-jira- software
thanks! Any questions? You can find me at justin.erdman@cybereason.com Twitter: @elorionsec

More Related Content

PDF
Scrum in Your SOC @Blackhat USA 2017
byJustin Erdman
 
PDF
An Introduction to the Agile SoC
byCybereason
 
PDF
Scaling Scrum with LeSS
byMarek Kirejczyk
 
PDF
Less intro workshop
byElad Sofer
 
PPTX
Scrumban - applying agile and lean practices for daily uncertainty by Vidas V...
byVidas Vasiliauskas
 
PDF
Scrumban benefits of both the worlds
byCoachingSaga
 
PPTX
Driving Change with Data: Getting Started with Continuous Improvement
byLeanKit
 
PPTX
From Scrum to Kanban
byNeil Johnson
 
Scrum in Your SOC @Blackhat USA 2017
byJustin Erdman
 
An Introduction to the Agile SoC
byCybereason
 
Scaling Scrum with LeSS
byMarek Kirejczyk
 
Less intro workshop
byElad Sofer
 
Scrumban - applying agile and lean practices for daily uncertainty by Vidas V...
byVidas Vasiliauskas
 
Scrumban benefits of both the worlds
byCoachingSaga
 
Driving Change with Data: Getting Started with Continuous Improvement
byLeanKit
 
From Scrum to Kanban
byNeil Johnson
 

What's hot

PPTX
Reduce WIP and Deliver Often: Kanban Recipe for Success Steps 2 and 3
byJason Yip
 
PDF
All You Want To About Kanban Before Doing Kanban Certification | AgileFever
byAgileFever
 
PPTX
How to make your daily stand-up more engaging
byBoris Kazarez
 
PPTX
Scrum basics
byJuan Banda
 
PDF
More with LeSS - An Introduction to Large Scale Scrum by Tim Abbott
byAgile ME
 
PDF
+Agile basics
bywalid sassi
 
PPTX
Scrumban – lean software development
byNaveen Kumar Singh
 
PDF
Scrumban
byJens Meydam
 
PDF
Kanban more than you think - LKNA17
byWolfgang Wiedenroth
 
PPTX
Balance Demand Against Throughput: Kanban Recipe for Success Step 4
byJason Yip
 
PPTX
Vidas Vasiliauskas. Scrumban - mixing agile and lean for product manufacture ...
byAgile Lietuva
 
PDF
More with LeSS - short intro
byElad Sofer
 
PPTX
Scrumban (Lean Agile Fusion) V1.1
byMichael O'Rourke
 
PPTX
Scrumban Demystified
byJack Speranza
 
PPTX
Catch agile
byYuriy Silvestrov
 
PDF
Scrumban
byXebia Nederland BV
 
PDF
Introduction to Kanban
byScrum & Kanban
 
PDF
Scrumban
byAjay Reddy
 
PPTX
Lean Practices For Software Development
bySandeep Yadav
 
PPTX
Open ScrumBan Guideline
byZhang Keqiang
 
Reduce WIP and Deliver Often: Kanban Recipe for Success Steps 2 and 3
byJason Yip
 
All You Want To About Kanban Before Doing Kanban Certification | AgileFever
byAgileFever
 
How to make your daily stand-up more engaging
byBoris Kazarez
 
Scrum basics
byJuan Banda
 
More with LeSS - An Introduction to Large Scale Scrum by Tim Abbott
byAgile ME
 
+Agile basics
bywalid sassi
 
Scrumban – lean software development
byNaveen Kumar Singh
 
Scrumban
byJens Meydam
 
Kanban more than you think - LKNA17
byWolfgang Wiedenroth
 
Balance Demand Against Throughput: Kanban Recipe for Success Step 4
byJason Yip
 
Vidas Vasiliauskas. Scrumban - mixing agile and lean for product manufacture ...
byAgile Lietuva
 
More with LeSS - short intro
byElad Sofer
 
Scrumban (Lean Agile Fusion) V1.1
byMichael O'Rourke
 
Scrumban Demystified
byJack Speranza
 
Catch agile
byYuriy Silvestrov
 
Scrumban
byXebia Nederland BV
 
Introduction to Kanban
byScrum & Kanban
 
Scrumban
byAjay Reddy
 
Lean Practices For Software Development
bySandeep Yadav
 
Open ScrumBan Guideline
byZhang Keqiang
 

Similar to The Agile SOC @SANS SOC Summit 2017

PDF
When Management Asks You: “Do You Accept Agile as Your Lord and Savior?” - Ci...
byadmford
 
PPTX
PMI-ACP Domain 1 Agile Principles and Mindset
byJoshua Render
 
PPT
Agile overview
byBenny Zangiri
 
PDF
Introduction to Scrum - An Agile Frameworks
byAMJAD SHAIKH
 
PPT
Agile Project Management training by manohar prasad
byManohar Prasad, PfMP®, PgMP®, PMP®, RMP®, ACP®, CAL®, ACC®, CSP®
 
PDF
Crash Course Scrum - handout
byArjan Franzen
 
PPT
Agile Software Development with Scrum
byChris Brown
 
PPTX
Introduction to agile
bySandipp Vijj, Digital Disruptor
 
PDF
Agile, not just for software
byJohn Paz
 
PPT
KANBAN-13-2048allpages (24 files merged).ppt
byimjdabhinawpandey
 
PPTX
Agile tutorial
byChen-Tien Tsai
 
PDF
When Management Asks You: “Do You Accept Agile as Your Lord and Savior?"
byadmford
 
PPTX
Choosing the right agile approach for your organization
byInCycle Software
 
PDF
Agile Basics: Women In Agile Mid Atlantic
byLeahBurman
 
PDF
Understanding-Agile &Scrum.pdf
bySwapnikaReddy6
 
PDF
Understanding-Agile for beginners in real
byMohamedMasthan8
 
PDF
Intro-to-Agile-Methodologies.pdf
byShristi Shrestha
 
PDF
Working with Agile technologies and SCRUM
byAndrea Tino
 
PPTX
Agile Project Management
byAllianceMSFourOneEig
 
PDF
Scrum 101
byOzgur Ertem
 
When Management Asks You: “Do You Accept Agile as Your Lord and Savior?” - Ci...
byadmford
 
PMI-ACP Domain 1 Agile Principles and Mindset
byJoshua Render
 
Agile overview
byBenny Zangiri
 
Introduction to Scrum - An Agile Frameworks
byAMJAD SHAIKH
 
Agile Project Management training by manohar prasad
byManohar Prasad, PfMP®, PgMP®, PMP®, RMP®, ACP®, CAL®, ACC®, CSP®
 
Crash Course Scrum - handout
byArjan Franzen
 
Agile Software Development with Scrum
byChris Brown
 
Introduction to agile
bySandipp Vijj, Digital Disruptor
 
Agile, not just for software
byJohn Paz
 
KANBAN-13-2048allpages (24 files merged).ppt
byimjdabhinawpandey
 
Agile tutorial
byChen-Tien Tsai
 
When Management Asks You: “Do You Accept Agile as Your Lord and Savior?"
byadmford
 
Choosing the right agile approach for your organization
byInCycle Software
 
Agile Basics: Women In Agile Mid Atlantic
byLeahBurman
 
Understanding-Agile &Scrum.pdf
bySwapnikaReddy6
 
Understanding-Agile for beginners in real
byMohamedMasthan8
 
Intro-to-Agile-Methodologies.pdf
byShristi Shrestha
 
Working with Agile technologies and SCRUM
byAndrea Tino
 
Agile Project Management
byAllianceMSFourOneEig
 
Scrum 101
byOzgur Ertem
 

Recently uploaded

PPTX
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
PPTX
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
PPTX
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
PDF
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
PDF
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
PDF
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PDF
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
PDF
Python Automation in Action: Real-World Use Cases and Practical Implementation
byDenys Smirnov
 
PPTX
Celonis Optimizing your future with process
bydevjeremyappleyard
 
PDF
Security-Fails-in-the-Gaps-Between-Systems.pptx.pdf
byOhhproJunction
 
PDF
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
PDF
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
PPTX
How Does an ICO Launchpad Work Step-by-Step Breakdown.pptx
byTom Hardy S
 
PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PPTX
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
TravelTech Paris 2025 | Beyond the pipes: Why Channel Management isn’t really...
byapidays
 
Working Session — Build a Document Understanding Automation Using an OOTB ML ...
byDianaGray10
 
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
Python Automation in Action: Real-World Use Cases and Practical Implementation
byDenys Smirnov
 
Celonis Optimizing your future with process
bydevjeremyappleyard
 
Security-Fails-in-the-Gaps-Between-Systems.pptx.pdf
byOhhproJunction
 
Session 1/5: Enhancing Automation with Screenplay & Business Rules
bysuhanisingh58689
 
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
How Does an ICO Launchpad Work Step-by-Step Breakdown.pptx
byTom Hardy S
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
Do You Control the AI, or Does the AI Control You?
bymedhateltoukhy
 

The Agile SOC @SANS SOC Summit 2017

  • 1.
    The Agile SoC Getthe most from your security team
  • 2.
    About me I amJustin Erdman Security Engineer @ Cybereason Unapologetic Blue Teamer justin.erdman@cybereason.com Twitter: @elorionsec
  • 3.
    Agenda ✓ What isit? ✓ Origin Story ✓ Why Agile? ✓ Core Principles / Elements ✓ The Real World ✓ Challenges ✓ Getting Started
  • 4.
    ““Agile is notjust a methodology, but a set of principles and philosophy.” - Pearl Zhu
  • 5.
    Agile…Huh? ✓ Set ofprinciples for software development under which requirements and solutions evolve through the collaborative effort of self-organizing cross-functional teams ✓ Advocates adaptive planning, evolutionary development, early delivery, and continuous improvement, and it encourages rapid and flexible response to change
  • 6.
    In the Beginning… ✓1950’s – IBM started using iterative & incremental software development methods ✓ 1970’s - Evolutionary project management & adaptive software development ✓ 1990’s - Rapid application development, extreme programming, scrum ✓ 2001 - The Manifesto for Agile Software Development
  • 7.
    The Skinny Responding tochange Following a plan Rapid iterations Big-Bang campaigns Testing & data VS Opinions & conventions Many small experiments A few large bets Individuals & interactions One size fits all Collaboration Silos & hierarchies
  • 8.
    The Flavors DuJour ✓ Scrum ✓ Kanban
  • 9.
    Scrum! ✓ Iterative &incremental process for structuring work ✓ Leverages commitment as change agent ✓ Face-to-face communication / close online collaboration ✓ Gamification of work
  • 10.
    Scrum-ptious ✓ Small teamspending a short time building small things ✓ Time boxed & cross-functional teams ✓ Prioritized product backlog ✓ Three roles - product owner, scrummaster, & team ✓ Team velocity based ✓ No new items mid-sprint ✓ Scrum board reset every iteration ✓ Work only on those items that fit into the iteration ✓ Daily stand-ups
  • 11.
    Roles & Ceremonies ✓Roles Product Owner ScrumMaster Team ✓ Ceremonies Sprint Planning Daily Stand-up Sprint Review Sprint Retrospective
  • 12.
    The Quick &Dirty On Scrum ✓ Product owner creates a prioritized list ✓ team selects top item(s) from backlog ✓ Sprint (2-4 weeks) — team meets each day to assess progress ✓ Scrummaster keeps the team focused ✓ Hand work to customer / show to a stakeholder ✓ Sprint review & retrospective ✓ Rinse & repeat
  • 13.
  • 14.
    Kanban! ✓ Based on3 basic principles Visualize what you do today (workflow) Limit the amount of work in progress (WIP) Enhance flow ✓ Plan – Do – Study – Adapt (PDSA) approach
  • 15.
    You Can Kanban ✓Work split into pieces ✓ Limited in progress items for a specific workflow ✓ Not timed boxed ✓ No prescribed roles ✓ New items can be added anytime within the pre-decided limit ✓ Board not reset & can be changed by anyone on team ✓ Story points & velocity not used ✓ No prescribed product backlog ✓ Daily stand-ups common
  • 16.
  • 17.
    Our Story Welcome toour crazy world
  • 18.
    Change…Why? ✓ Better organizationof process improvements ✓ Prioritization of high impact items ✓ Increased work throughput & (some) predictability ✓ Easier to track planned & handle unplanned work ✓ Better resilience to changes ✓ Minimized planning & coordination ✓ Greater ability to gauge growth over time
  • 19.
    You like StickyNotes…Right? ✓ Sprint zero 100% sticky notes ✓ No speed record attempts….yet ✓ Brain training ✓ Gamification of work ✓ Work to establish realistic team velocity ✓ Reinforce team mentality
  • 20.
    Evolution ✓ Sticky Notesto Jira ✓ More realistic in sprint velocity ✓ Honest & direct team communication / feedback ✓ Full recognition of importance of ceremonies ✓ Less “I” & a whole lot more “team” ✓ Ask for help
  • 21.
  • 22.
  • 23.
  • 24.
  • 25.
    Challenges & Setbacks ✓Moving to Scrum calls for a culture shift ✓ Establishing a groove – training is necessary ✓ Makes it difficult not to be a team player ✓ Breaking down classic silos ✓ Accountability ✓ Distraction from BAU – Discipline!
  • 26.
    Resources / Tools ✓Tools Jira Trello ServiceNow – Visual Tasks Boards VersionOne ✓ http://www2.cprime.com/Agile-Impeditments-Webinar ✓ https://www.cprime.com/resources/what-is-agile-what-is-scrum ✓ https://www.atlassian.com/agile/how-to-do-scrum-with-jira- software
  • 27.
    thanks! Any questions? You canfind me at justin.erdman@cybereason.com Twitter: @elorionsec