David Seidman, Head of D&R at Robinhood, Talks Tools, Strategies, and Advice for Improving Detections at Scale
In this episode, Jack speaks with David Seidman, Head of Detection and Response at Robinhood. David has worked for large tech companies like Google, Microsoft, and Salesforce in a variety of D&R roles.
During this episode, David shares his tactical advice on how his team is building the pipes and engines of security at Robinhood, his top tools to improve fidelity of detections, and what he’s learned in his career that’s made him a better practitioner and leader.
Topics discussed:
- The ‘unusual strategies’ and hypothesis on the kill chain model David has not shared before publicly
- His top five tools to use to improve the fidelity of your detections
- How David has seen composite detection be effective in practice and why it is most effective when it’s analyst driven
- His experience working on Google Cloud's Event Threat Detection
- What a mature IR process look like today and how to train staff that’s run IR in the past
- A big challenge and growth area in the industry that doesn’t get enough attention
- The new frontier of what the detection and response stack will look like in the future
- David’s keys to an effective IR program, such as regular exercises, communications plan, having access and permissions to data, strong controls, and more.
- The three actionable takeaways David learned from his roles at Google, Microsoft, Salesforce, and now Robinhood that make him a better practitioner and leader today
Related Podcasts

Chris Witter, D&R Leader at Spotify, on Running Highly Effective Teams at Scale
Chris shares his behind-the-scenes experiences helping build the Falcon Overwatch Team at Crowdstrike, why it’s critical to measure queries in seconds, not minutes, his tips on running highly effective D&R teams at scale, and more!

Kelly Jackson Higgins Discusses The Evolution of Cybersecurity
Kelly Jackson Higgins, Editor-in-Chief at Dark Reading, shares her thoughts about how cybersecurity and cyberthreats have changed over the years and what we can do to stay ahead of them. She also offers some great advice for businesses of all sizes.

Michael Hanley of GitHub on Why Security Needs Engineering, and Vice Versa
In this episode of the Detection at Scale, Jack speaks with Michael Hanley, Chief Security Officer and SVP of Engineering at GitHub. He also spent five years at Duo Security building their security program, and is passionate about making security easy and accessible for everyone.