--[ Threat Intelligence and Splunk at USCYBERCOM

$ getent passwd jhoge
├─ name: Josh Hoge
└── org: Splunk

Josh Hoge spent 20 years in Army Special Operations and Intelligence Community, serving as an Arabic language interrogator, SIGINT collector, and on-net cyber operator before moving into organizational leadership roles. He has been with Splunk for 2 years and is the lead Solutions Engineer for USCYBERCOM.


Continued, highly targeted cyberattacks on the U.S. government, allies, and partners raise the stakes for the Cyber National Mission Force (CNMF) to quickly detect and respond to threats anywhere in cyberspace. This session will cover how the CNMF currently uses Splunk to enable threat hunting missions and secure/operate its mission support networks, as well as outline how security operations centers, threat hunting organizations, and their supporting elements can address the threats they face by adapting and transforming their approach to threat intelligence integration.