In this episode of Future of Security Operations, Thomas speaks with Jon Hencinski, VP of SecOps at Expel, a company with "a mission to make security easy to understand, easy to use, and easy to continuously improve." Hencinski is passionate about getting to the root cause of security issues and using strategy to help organizations make problems go away entirely.

Topics include:

• How Jon has seen security evolve from his time on the help desk to managing enterprise incident response investigation.
• The importance of using automation for detection at scale — especially as new classes of threats continue to emerge — and what makes a “good detection.”
• How organizations can reduce risk through strategy and by making investments in preventing common incidents like business email compromise and macro-enabled Word docs.
• The metrics Jon uses to measure success, and why thinking in terms of business goals and objectives will help you retain customers and deliver great outcomes.
• Some of the habits of an effective SOC, and how culture and candor can play a big role.
• How Expel uses data and metrics to track workloads, hedge burnout, and take care of the mental health of their team.
• Advice for those just getting started in security, and predictions for what the future of security teams will look like.

Resources:

• Twitter: @jhencinski
• Expel.com
• Keep in touch with Jon Hencinski on LinkedIn: https://www.linkedin.com/in/jonathanhencinski/