Ep. 55 SIEMs & Data Lakes can be friends...it isn't Either/Or, It’s Yes, And.

On this Detection Dispatch, host Alex Hurtado sits down with Jake Berkowski CTO at Snowflake to crack open one of the hottest and often misunderstood topics in modern SecOps: the rise of the security data lake x security data lakes as your SIEM.

Modern detection architecture isn’t about choosing SIEM or lake — it’s about interoperability, orchestration, and strategic flow. We cover federation hype and data silo upkeep fatigue and take a brutally honest look at why standalone SIEMs aren’t cutting it, what’s actually driving data lake adoption, and how teams can shift from buying more platforms to building better data flows. Along the way, they unpack the new Snowflake x Splunk integration, AI governance headaches, and the myth of the “one platform to rule them all.

If you're wrestling with detection silos, debating SIEM retirement, considering data lake modernization or just trying to make sense of the evolving detection-to-response pipeline, this episode is your signal.

Detection Engineering Dispatch features candid conversations with security teams at top companies on how they build, measure, and scale world-class detection programs.

‍