White Papers
October 9, 2025 / October 9, 2025 by Query
This white paper explores how to map Amazon Application Load Balancer (ALB) access logs to the Open Cybersecurity Schema Framework (OCSF) to improve security analytics, visibility, and incident response...
Read more »
October 1, 2025 / October 1, 2025 by Query
Learn how to measure and optimize your cybersecurity investigation costs by quantifying your analysts' searches per investigation (ASPI)...
August 14, 2025 / August 15, 2025 by Query
Newsroom
August 4, 2025 / August 4, 2025 by Query | Leave a Comment
Videos Webinars
May 9, 2025 / May 9, 2025 by Query
Join Neal Bridges on this episode of SecDataOpsCast as he sits down with cybersecurity veteran Alan White, an 18-year Army signals officer turned Dell Secureworks, Digital 14, Mandiant & Google leader, to unpack “Security Operations in a Post-AI World.” Hear them discuss: How the explosion of dashboards and data sources has made SOC work more […]
Videos
April 17, 2025 / April 17, 2025 by Query | Leave a Comment
Learn how to map Okta authentication events stored in Snowflake into the Open Cybersecurity Schema Framework using Query Copilot for Configure Schema. In this under‑5‑minute demo, Jonathan Rao shows you how to: Load a data sample from Snowflake in tabular or JSON view Use AI‑driven suggestions to classify event types and map fields (email, IP […]
April 14, 2025 / April 14, 2025 by Query
Welcome to a special edition of the #SecDataOpsCast, where things are about to get real. In this no-holds-barred episode, host Neal Bridges brings together two powerhouse CISOs for a head-to-head debate on one of the hottest topics in cybersecurity today: AI in the Security Operations Center (SOC). 👥 Kyu Kwak – CISO at Pearson 👥 […]
March 24, 2025 / March 24, 2025 by Query
In this episode of SecDataOpsCast, Neal Bridges and Jonathan Rau take a deep dive into the evolving world of security data operations. Hear recent experiences from hands-on consulting engagements, detailing how organizations handle (or sometimes mishandle) security data — from gathering logs to building effective data flow diagrams. Jon and Neal deliver tried and tested […]
Blogs
March 20, 2025 / March 20, 2025 by Query | Leave a Comment
Query announces the CrowdStrike Falcon LogScale (formerly known as Humio) Connector. CrowdStrike Falcon LogScale – also known as LogScale Cloud, and formerly Humio – is a CrowdStrike-managed log storage platform that handles the end-to-end tasks of ingesting, storing, querying, and visualizing log data. The various ingested data sources are organized into one or more Repositories […]
February 13, 2025 / February 14, 2025 by Query
Being a CISO means constantly walking a tightrope while balancing technology, business goals, and risk. But how do you make the right calls in a high-stakes environment? Don’t miss this conversation between two of the best CISOs in the industry!
