Posts by Ian Cooper
Product | 4 min read
New Ruxie AI power-up: Identity classification gives analysts a ‘gut check’ for identity alertsExpel AI has a new feature: identity classification. It triages and prioritizes alerts so analysts can spot identity threats faster.
Product | 4 min read
New Ruxie AI power-up: User context summary turns ‘who?’ into ‘what’s next?’User context summary is a new Expel AI power-up that automatically queries identity tools to gather relevant user details for an alert.
Product | 6 min read
How we built this: machine learning, IAM, and ITDR with Expel’s SOCExpel uses AI-powered classification to categorize our identity alerts and provide transparent decision-making. Here's how we do it.
Cloud security | 7 min read
Five common multi-cloud security challengesSwitching to multi-cloud is hard. An Expel engineer shares what you need to think about and how to stay sane during the transition.
Rapid response | 5 min read
Incident report: stolen AWS access keysLearn what happens after AWS access keys are stolen. Our teams collaborated on a real-world incident. Read how we responded to the attack.
Product | 2 min read
Cutting Through the Noise: RIOT Enrichment Drives SOC ClarityCut through the noise in your SOC with RIOT enrichment. Also known as the rule-it-out enrichment, see how it works.
Cloud security | 3 min read
5 pro tips for detecting in AWSCloud security is complex, but start with the basics. Get pro tips to help focus your lens for detecting threats in AWS effectively.
Cloud security | 6 min read
How Expel goes detection sprinting in Google CloudBuilding detections in GCP? Our engineers demystify the process for you. Learn how to get strategic with your cloud detection and response.