Threat Vector | Securing the Insecurable: Inside the Black Hat NOC and Zero-Hour Resilience

In this episode of Threat Vector, host David Moulton speaks with Jason Reverri, Manager of Technical Product Engineering for Cortex at Palo Alto Networks, and James Holland, Distinguished Engineer for Technology Innovation at Palo Alto Networks, about the unique challenge of defending Black Hat—one of the world’s most complex cybersecurity events.

Key Discussion Points:

• Real-time threat response: How the NOC team responds to live exploitation of vulnerabilities disclosed moments earlier during conference talks 
• Dedicated network architecture: Why Black Hat requires its own bespoke network infrastructure rather than venue systems for complete visibility and control 
• Massive scale operations: Managing over 900 million threat events annually while distinguishing between training scenarios and genuine malicious activity 
• AI-driven automation: How Cortex XSIAM automates 80% of initial triage, freeing analysts to focus on high-priority incidents 
• Multi-vendor collaboration: Coordinating real-time security operations with partners including Arista, Cisco, and Corelight

Join the conversation on our social media channels:

• Website: ⁠⁠⁠⁠https://www.paloaltonetworks.com/
• Threat Research: ⁠⁠⁠⁠https://unit42.paloaltonetworks.com/⁠⁠⁠⁠
• Facebook: ⁠⁠⁠⁠https://www.facebook.com/LifeatPaloAltoNetworks/⁠⁠⁠⁠
• LinkedIn: ⁠⁠⁠⁠https://www.linkedin.com/company/unit42/⁠⁠⁠⁠
• YouTube: @paloaltonetworks
• Twitter: ⁠⁠⁠⁠https://twitter.com/PaloAltoNtwks⁠⁠⁠⁠