SuperSOC: Conversations with the People Shaping the Future of Security Operations
SuperSOC: Conversations with the People Shaping the Future of Security Operations
Podcast Description
SuperSOC is the monthly podcast where Qevlar AI's CEO Ahmed Achchak interviews top cybersecurity experts to explore the future of the SOC. From real-world AI applications to rethinking SecOps workflows, each episode delivers bold insights and practical strategies for modern security teams. Recent guests include Google’s Anton Chuvakin and cybersecurity automation expert Filip Stojkovski.Want to know more about Qevlar AI and how it can help you automate alert investigation? Head to www.qevlar.com
Podcast Insights
Content Themes
The podcast focuses on topics such as artificial intelligence in security, automation in SOC workflows, and operational strategies for security teams. For example, episodes explore real-world AI applications and discuss challenges in L1/L2 workflows, providing concrete strategies for enhancing SOC efficiency through automation.
SuperSOC is the monthly podcast where Qevlar AI’s CEO Ahmed Achchak interviews top cybersecurity experts to explore the future of the SOC.
From real-world AI applications to rethinking SecOps workflows, each episode delivers bold insights and practical strategies for modern security teams.
Recent guests include Google’s Anton Chuvakin and cybersecurity automation expert Filip Stojkovski.
Want to know more about Qevlar AI and how it can help you automate alert investigation? Head to www.qevlar.com
AI is making security operations faster but not necessarily smarter. In this episode, Ahmed Achchak (CEO & Co-founder of Qevlar AI) sits down with Raffael Marty, cybersecurity veteran and early pioneer of SIEM and security analytics, to unpack why SOCs still struggle to understand attacks and what’s been missing all along: a true intelligence layer.
You’ll discover:
→ Why 20+ years of SIEM and correlation technologies still leave analysts reconstructing attacks manually
→ What actually broke in the evolution from early context-rich systems to today’s event-driven detection models
→ Why adding “AI on top” of existing tools doesn’t fix the core problem
→ How to capture analyst decisions and unlock a new layer of institutional knowledge
→ What an intelligence layer really is and how it changes the way investigations happen
→ How shifting from alerts to risk and campaigns reshapes security operations
Agenda:
00:00 – Introduction: Why SOCs still can’t connect the dots
02:16 – What broke in SIEM and why correlation failed
04:23 – Why alerts are a flawed foundation
07:42 – From alerts to campaigns: a new way to investigate
10:57 – Turning analyst knowledge into an intelligence layer
15:08 – Why LLMs need structured context (and where they fail)
20:27 – Moving to risk-based, AI-driven SOC operations
24:49 – Fire Round: AI-ready SOCs, the end of tiers, and future skills
Follow Ahmed on LinkedIn: https://www.linkedin.com/in/ahmed-achchak-872554109/
Follow Raffael Marty on LinkedIn: https://www.linkedin.com/in/raffy/
Get more of Raffael’s insights on his blog: https://raffy.ch/blog/
Stay tuned for Qevlar AI updates: https://www.linkedin.com/company/qevlar
Curious to learn how Qevlar AI can help you build an intelligence layer that turns alerts into real understanding? Head to: qevlar.com
Disclaimer
This podcast’s information is provided for general reference and was obtained from publicly accessible sources. The Podcast Collaborative neither produces nor verifies the content, accuracy, or suitability of this podcast. Views and opinions belong solely to the podcast creators and guests.
For a complete disclaimer, please see our Full Disclaimer on the archive page. The Podcast Collaborative bears no responsibility for the podcast’s themes, language, or overall content. Listener discretion is advised. Read our Terms of Use and Privacy Policy for more details.