At Cisco's Talos, a traditional security analyst culture has collided with lots of data. In this talk, Kate and Samir will describe how they’ve navigated this transition using Elasticsearch to leverage data to detect bad guys – with a special look at how Talos tracked the SSHPsychos SSH brute forcing campaign.