The 2018 Customer Advisory Board UX Workshop will be held in Austin on Monday Nov. 12 2018 from 12pm-5pm. This year's UX workshop will focus on the customers current needs vs. future needs and designing a product to address the current pain points. See below for last year's pain points.
Examples of future needs:
- Threats moving to cloud infrastructure (Cloud IPS for AWS)
- XGen SOC (SOC)
- Securing IoT devices (IoT)
Below is a list of pain points from 2017 CAB UX Workshop Report:
-
Threats In The Wild:
- Link active malwares to filters (SPN top threats--threat intelligence)
- Zero day attacks (visibility into unknown threats)
- Attacked vulnerable hosts (eVR vulnerability scans)
-
Filter Tuning:
- Workflows needed; now manual and resource intensive (IPS policy workflow)
- Audit trail; what actions were taken for change management (Timeline)
- Share vertical/industry best practices using Trend's customer data (Healthcare customer ABC enabled filters XYZ we recommend you do the same)
-
Performance Management:
- Baseline and benchmark metrics per IPS
- Central visibility of all appliance stats on SMS
- Visibility into signature logic/regex rules
Last year's user needs were used to create a IPS Policy Workflow prototype (we would love your feedback):
-
Automated workflow linking active malware/Zero-day vulnerabilities to filters
-
Verification of filter settings are done from within the console
-
Audit tracking changes to the filters, showing user comments
This year's workshop simulates start-up contest inside a company to design a solution addressing the user problems. Like any MVP, the contestants will run through the Research, Product Planning, Design, and Sell phases.
Agenda
Time | Activity | Time | Owner |
---|---|---|---|
12pm-12:05pm | Opening | 5 | Russ |
12:05pm-12:25pm | Update from last year's CAB workshop | 20 | Russ/Michael |
12:25pm-12:30pm | Workshop overview | 5 | Pacha |
12:30pm-1:00pm | Warm-up game | 30 | Pacha |
1:00pm-2:30pm | Research | 90 | Pacha |
2:30pm-2:40pm | Break | 15 | |
2:40pm-3:25pm | Product planning | 45 | Pacha |
3:25pm-4:15pm | Product design | 50 | Pacha |
4:15pm-4:45pm | Sell | 30 | Pacha |
4:45pm-5:00pm | Closing | 15 | Scott |
Preliminary materials in preparation for the workshop. (for Trenders)
User research/discovery of the current problems and future needs.
Problem prioritization using an auction process to narrow the scope down to a few specific problems. We'll use these personas to understand our users better.
Prototype solutions solving the problems in the product planning phase.
At this phase, each team will sell their ideas in front of all participants and will be given money to invest. The winning team will be given an award.
The personas we used to understand our users' needs.
IT System Administrator
- Monitor network traffic/appliance health status
- Troubleshoot appliances
- Review alerts and generate reports
Incident Analyst
- Review-->implement-->distribute
- Write custom signature
- Fix vulnerability issues
- Update filters
A list of interesting resources...
Last year's UX workshop report with tons of useful findings summarized and presented to the team by Pacha.
Cloud IPS security for AWS.
Trend's initiative for SOC AI enablement unifying siloed data from network, endpoints, email, web gateways, Cloud, data center
Targeted SOC Use Cases for Effective Incident Detection and Response
Maturing Workday's SOC With Splunk