SOC Summit Talk: One Sigma to Rule Them All

Name: SOC Summit Talk: One Sigma to Rule Them All
Start: 2026-03-25T14:30:00-04:00
End: 2026-03-25T14:55:00-04:00

With Dan Rearden

March 25 @ 2:30 pm – 2:55 pm EDT

You have Indicators of Compromise (IOCs) and EventIDs, but how do you maximize their use across your entire detection stack?

Join Dan Rearden, ProCircular SOC Analyst Tier II, for a technical 25-min presentation on Sigma Rules and their application to your Security Information and Event Management (SIEM).

You’ll learn what a Sigma Rule is, their benefits to your organization, how to craft them yourself, and ways to translate them into your SIEM query language.

Open up your favorite text editor, and become the SIGMA of your SOC next time an emerging threat pops up!

Chat with your fellow SOC Summit attendees in the Antisyphon Discord server: https://discord.gg/antisyphon

This talk is part of the Antisyphon Training SOC Summit, a free, 6-hour, live virtual event designed to give you an honest, practical look at what it’s really like to work in a SOC.

For those who want to go further, multiple hands-on, high-quality, and affordable training courses are available March 26-April 10 to help you deepen your skills and become more effective at protecting what matters most.

Learn more about the SOC Summit

See the entire Antisyphon Training Course Catalog for affordable cybersecurity training!

About the Instructor

Dan Rearden

Bio

Hiya everyone! I’m Dan Rearden, aka HaircutFish. My journey into the world of IT started unexpectedly at the start of 2020 with a knee injury. That left me in a career quandary, as I wasn’t able to return to my previous employment. Finding myself with some unexpected downtime, I decided to plunge headfirst into studying IT. Building my first PC and installing
Windows opened up a whole new world, especially when I discovered the magic of VMs and started exploring Linux. Honestly, the more I learned, the more captivated I became. It felt like stepping onto a path that kept branching off into equally interesting directions. My ADHD
absolutely thrives on that kind of exploration!

One of those branches led me to a small computer and mobile repair shop, where I got hands-on experience tearing down and fixing all sorts of tech. Eventually, another fork in the road appeared: should I deepen my repair skills or explore something new? Hacking caught my eye, and I was instantly hooked. For me, it’s all about the thrill of solving puzzles, and cybersecurity is just one giant, intricate puzzle.

Fast forward to today, and that hacking path presented me with another exciting choice: Red Team or Blue Team? Blue Team resonated more with who I am, so I chose Blue Team. All that dedicated learning, especially in the realm of Blue Team tactics, brought me to my current position at ProCircular where I triage tickets daily, as I work towards becoming a detection engineer.