Cisco celebrates our 10th year building and safeguarding the network for Black Hat Asia in Singapore. We are the Official Security Cloud Provider and a proud partner of the Black Hat NOC/SOC (Network Operations Center/Security Operations Center), the longest-standing partnership.
We work with other official providers to bring the hardware, software and engineers to build and secure the Black Hat Asia network: Arista, Corelight, Jamf, MyRepublic and Palo Alto Networks.
The primary mission of the NOC is to maintain uninterrupted network stability. In addition, partners provide seamless security, comprehensive visibility, and automation by integrating a SOC within the NOC setup in the Maria Bay Sands Conference Center in just three days. Below is a screen grab from the live Twitch Stream.
Attendees could monitor real-time network traffic volume and security status on partner dashboards displayed on screens outside the NOC during visiting hours.
Black Hat handpicks its network and security partners, with NOC participation available by invitation only to ensure both diversity and a spirit of full collaboration. Our NOC team brings together a range of technologies and organizations, all committed to continuous innovation and seamless integration to deliver a robust, comprehensive SOC cybersecurity architecture.
Since 2017, Cisco has protected the Black Hat Asia network, beginning with automated malware analysis using Threat Grid. Over the years, Cisco’s involvement has grown to meet the conference’s evolving needs by incorporating additional components of the Cisco Security Cloud and Splunk Security into both network and security operations.
- Splunk Attack Analyzer, with Cisco Secure Malware Analytics (Formerly Threat Grid): sandboxing and integrated threat intelligence
- Cisco Secure Access: Zero Trust Architecture and DNS visibility for the conference network and protection for iOS devices
- Cisco Duo Directory, with Identity Intelligence: Single Sign-on (SSO)
- Cisco Security Connector: iOS device security and visibility, managed with Jamf
- ThousandEyes: Network observability / availability
- New for Black Hat Asia, we donated a Unified Computing System C240M7 Dual 8000 class CPUs, to provide data center level computing for the NOC/SOC.
The NOC leadership enabled Cisco and other partners to introduce additional pre-approved software and hardware solutions, enhancing our internal efficiency and expanding our visibility capabilities; however, Cisco is not the official provider for Extended Detection & Response, Security Event and Incident Management, Firewall, Network Detection & Response or Collaboration.
- Cisco XDR: Threat Hunting / Threat Intelligence Enrichment / Executive dashboards / Automation with Webex. The Cisco XDR Command Center dashboard tiles made it easy to see the status of each of the connected Cisco Security technologies (check out the Threat Hunters’ Corner blog by Aditya Raghavan)
- Cisco Secure Network Analytics (Formerly Stealthwatch): Network traffic visibility and threat detection
- Splunk Cloud Platform and Splunk Enterprise Security: integrations and dashboards
- Cisco Webex: incident notification and team collaboration
In addition, we deployed proof of value tenants for security:
- Cisco Firepower Threat Defense virtual: intrusion detection with Snort ML
We appreciate alphaMountain.ai, Pulsedive and StealthMole donating full licenses to Cisco, for use in the Black Hat Asia NOC/SOC.
Learn More About Cisco at Black Hat Asia
Explore deeper insights into innovation, threat hunting, and integrations by diving into our Black Hat Europe blogs, where we highlight advanced SOC practices, Cisco XDR and Splunk Enterprise Security collaborations, and the latest security cloud innovations showcased at Black Hat events. These blogs provide detailed coverage of how integrated telemetry, automated alerting, and AI-powered analytics enhance threat detection and response capabilities for security teams.
- Unveiling the Power of Integration: XDR, Splunk, Corelight, Arista and Palo Alto Networks in Action at Black Hat Asia
- Uplevelling Black Hat Threat Hunters
- Cisco Secure Access with MCP Infrastructure at Black Hat Asia 2026
- The Essence of Black Hat – Collaboration with Partners
- Black Hat Asia 2026: Threat Hunters’ Corner
- Using Defense Claw to Secure Agentic Workflows
- Scaling the High-Stakes Edge: ThousandEyes at Black Hat Asia 2026
We are already planning for more innovation at Black Hat USA, held in Las Vegas, August 2026.
Acknowledgments
Thank you to the Cisco NOC/SOC team:
- Co-Lead and SOC Integrations: Ivan Berlinson
- Hardware and Duo Directory: Adi Sankar
- Splunk Security (Malware, XDR, Enterprise Security): Aditya Raghavan, Cam Dunn and Lily Lee
- User Protection/Secure Access: Takashi Yamamoto
- ThousandEyes: Patrick Yong and Suman Das
- Remote Team: Nasreddine Bencherchali and David Gamer
Also, to our NOC partners Palo Alto Networks (especially James Holland), Corelight (especially Mark Overholser and Eldon Koyle), Arista Networks (especially Landon Harsh), Jamf (especially Adam Derrick), MyRepublic (especially Ryan De La Rosa Pasia) and the entire Black Hat / Informa Tech staff (especially Grifter ‘Neil Wyler’, Bart Stump, Steve Fink, James Pope, Michael Spicer, Jess Jung and Steve Oldenbourg).
About Black Hat
Black Hat is the cybersecurity industry’s most established and in-depth security event series. Founded in 1997, these annual, multi-day events provide attendees with the latest in cybersecurity research, development, and trends. Driven by the needs of the community, Black Hat events showcase content directly from the community through Briefings presentations, Trainings courses, Summits, and more. As the event series where all career levels and academic disciplines convene to collaborate, network, and discuss the cybersecurity topics that matter most to them, attendees can find Black Hat events in the United States, Canada, Europe, Middle East and Africa, and Asia. For more information, please visit www.Black Hat.com.
We’d love to hear what you think! Ask a question and stay connected with Cisco Security on social media.
Cisco Security Social Media
