John Richards

John Richards is the Senior Manager, Detection & Response Engineering at Okta. He leads the teams that are responsible for detection and response engineering across Okta's production and corporate environments. In addition to detection and response, John has subject matter expertise in AWS security, security automation, and FedRAMP compliance. Before joining Okta, John spent 4 years as a part of the security team at Proofpoint in a variety of roles.

John Richards

December 8, 2021

We want the logs. The whole logs and nothing but...

In cyber nirvana, the logs are plentiful. In this ideal world, security teams work from a single pristine record of all critical apps accessed by admins and users. Logs are streamed in near-real time to the SIEM and arrive in a consistent, well-structured format. When alerts fire, responders have every relevant detail available to them. We all sleep well at night. In the real world, unfortunately, security practitioners spend a frustrating share of their time extracting and translating logs...