Panther reposted this
We added a full system architecture description of Panther to our user docs a few months ago. More than 1 person has said to me "That's crazy, you are telling your competitors and even the more tech savvy customers how to do what you do! They will steal your ideas and you will lose business." I think the opposite, let me explain. Panther is a "Cloud Native" SIEM, taking advantage of all the available services. Does that mean anyone can do what we have done? Yes it does. Assuming enough good engineers, in 3-5 years you could build what we have today. It will take 3-5 years because Panther is more than "let's wire up some lambdas to write parquet files". The hard lessons learned about resiliency, correctness and cost effectiveness take time and a diversity of experience. The full feature set of a SIEM goes well beyond simply running scheduled queries. By showing how we implemented the breadth of features in Panther we hope customers will appreciate what we have created and understand the value of what we offer. Do you have 3-5 years to roll your own? Do you have the operational staff to run what you built? If so, let's compare notes in a few years. In the meantime, Panther has some industry changing capabilities planned for 2025. More on that in a few months!
Good call. This can give customers confidence in your system and doesn’t cost you anything. Implementation and getting the details right is where the real value is.
Love this- putting yourself and your team out there like that is hard, esp given the competitors in the space. Thanks for this!
Very impressive, thank you for sharing.
Chief Architect at Panther Labs | ex-Amazon
1wShout out to Cara Reaume for our awesome documentation.