Get In Touch

The Real Reason Cybersecurity Tools Fail

Cybersecurity blind spots illustration

A CISO’s nightmare: You just spent seven figures on a next-generation SIEM. It passed the demo, impressed the board, and promised to be a “single pane of glass.” Six months later, you’re breached.

The post-mortem reveals the most frustrating fact of all: the attacker’s activity was in the logs. The data was there. But your analysts, using your brand-new tool, never saw it.

Why?

This is the real, multi-million dollar question. And the real reason most cybersecurity tools fail has nothing to do with packet loss or log ingestion speed.

It’s because we’ve been measuring the wrong thing.

Buying Cybersecurity Tools Based on Opinion

For decades, we’ve purchased critical security tools based on sanitized vendor demos, brand loyalty, and gut feeling. The “Splunk vs. Elastic” debate rages in every SOC, but the arguments are almost always about price, query language, or familiarity, not empirical proof of which one actually helps your team find threats faster.

We buy platforms that promise “visibility” but have no way to grade that visibility. We measure machine-level metrics (like “message completion rate”) but fail to measure the one thing that matters: Does this tool improve your human analyst’s situational awareness?

If the human in the “digital cockpit” can’t understand what’s happening, the tool has failed, no matter what its spec sheet says.

A Proven Method from a Different Cockpit

This problem isn’t new. In aviation, they solved it decades ago. To test if a new fighter jet cockpit design actually worked, they didn’t just ask the pilot if they “liked” it. They used a method called the Situational Awareness Global Assessment Technique (SAGAT).

The process was brilliant: they would have a pilot fly a simulator, then suddenly blank the screens and ask them critical questions: “What is your altitude? What is your fuel state? Where is the nearest threat?”

This provided a quantitative score for what the pilot actually knew.

How ARB1T3R Finds the “Real Reason” for Failure

We built ARB1T3R by adapting this exact, high-stakes methodology for the cybersecurity domain. ARB1T3R isn’t another SIEM; it’s the “Consumer Reports” for your entire security stack. It’s a test harness that finally measures what matters.

Our method + software + process runs your team and your tools through a realistic, role-based test:

  1. We load a ground-truth dataset (where we know every single malicious event) into your tool (Splunk, Elastic, etc.) in a controlled environment.
  2. We give your SOC analyst or malware analyst a specific job to do.
  3. We “blank the screen” and ask them critical, time-boxed questions: “Which host exfiltrated data? What malware family did you observe?”
  4. ARB1T3R then generates a quantitative score (e.g., 92/100 or ‘A-‘) for how well that human, using that tool, understood the battlefield.

The Answer Isn't a Grade, It's a Diagnostic

Here is the most important part. ARB1T3R doesn’t just tell you that you failed; it tells you why.

This is the key diagnostic that has been missing from cybersecurity.

Let’s say a “gold standard” benchmark for Splunk is a 95, but in your environment, your team scores a 50. The problem isn’t to “buy a new tool.” The problem is to diagnose the gap.

ARB1T3R’s analysis pinpoints the real reason for failure:

  • Is it a Data Gap?

    • Diagnosis: Your team scored a 50 because your Splunk instance isn’t even receiving the necessary Zeek or Netscout data. Your tool isn’t the problem; your data pipeline is.

  • Is it a Visualization / UI Gap?

    • Diagnosis: The data is in the tool, but your analysts couldn’t find it. The dashboards are confusing, the queries are too slow, or the UI is unusable. The tool’s configuration is the problem.

This is the difference between guessing and knowing; how informed decisions drive the right investments.

Cyber Readiness Starts with Clarity: Stop Guessing. Start Seeing.

For too long, we’ve bought security tools on faith and failed to hold them accountable to the one metric that counts: human understanding.

ARB1T3R provides the objective, empirical evidence you need to de-risk your multi-million dollar investments. You can finally compare vendor claims against ground truth, benchmark your own implementation, and get an actionable plan to fix the real gaps in your defense.

Sign up for our Early Access Program to be the first to use ARB1T3R and bring an evidence-based “Consumer Reports” to your security stack.

Join the Early Access Program

Your privacy matters. We’ll never share your information.

VeriTech Services

True Tech Advisors – Simple solutions to complex problems. Helping businesses identify and use new and emerging technologies.
  • Consulting
  • Cloud Services
  • Risk Management
  • Training
  • Operations

Stay Up to Date on ARB1T3R

"*" indicates required fields

Name*

Greg Bew

CEO

CEO | Data Architecture & AI Strategy Leader | Cyber Operations & Decision Advantage Expert

Greg Bew is a technology and transformation leader with deep expertise in data architecture, cyber operations, and large-scale enterprise modernization. With over two decades of experience spanning military service and industry, Greg has led the design and implementation of mission-critical data platforms, advanced analytics capabilities, and AI-driven decision systems supporting national security and defense operations.

A retired U.S. Army Lieutenant Colonel, Greg served in key leadership roles across cyber and intelligence organizations, culminating as a Senior Advisor to the Commander of DoD Cyber Defense Command and the Director of DISA for Data, Analytics, and AI. In these roles, he helped shape the Joint Cyber Warfighting Architecture (JCWA), driving the transition toward data-centric operations and enabling decision advantage across distributed, contested environments.

As the Founder & CEO of Veritech Consulting, Greg applies this experience to help government and enterprise organizations design and operationalize modern data architectures. His work focuses on integrating cloud, AI/ML, and distributed data systems into cohesive, mission-aligned platforms that prioritize governance, scalability, and real-world operational impact.

Key Expertise & Accomplishments:

Data Architecture & Platform Engineering – Designed and led enterprise-scale data platforms enabling distributed analytics, AI integration, and real-time decision support across multi-domain environments.

Cyber Operations & Intelligence Integration – Extensive experience aligning data, analytics, and operational workflows to support cyber defense, intelligence fusion, and mission execution.

AI & Advanced Analytics Enablement – Spearheaded initiatives to operationalize AI/ML within secure environments, integrating model deployment, governance, and data pipelines at scale.

Strategic Leadership & Advisory – Served as a senior advisor to three-star leadership, shaping enterprise data strategy, governance models, and cross-organizational integration efforts.

Cloud & Distributed Systems Modernization – Led transitions from legacy architectures to cloud-native and federated data environments, emphasizing resilience, sovereignty, and performance.

Career Highlights:

🔹 Senior Advisor, DoD Cyber Defense Command & DISA – Guided enterprise data and AI strategy supporting the Joint Cyber Warfighting Architecture and global cyber operations.

🔹 Senior Principal Data Platform Engineer, Leidos – Delivered advanced data solutions and modernization strategies across defense and federal customers.

🔹 U.S. Army Lieutenant Colonel (Retired) – Led cyber, intelligence, and data-focused units, driving innovation in operational analytics and mission systems.

Thought Leadership & Innovation:

📘 Author of Sky Computing: The Architecture of Data Sovereignty, introducing a new model for governing data, authority, and computation in distributed environments.

🚀 Creator of frameworks and platforms focused on data sovereignty, federated control, and AI-enabled decision advantage.

📊 Advocate for data-centric operations, emphasizing the alignment of technology, governance, and mission outcomes.

Greg Bew continues to lead Veritech Consulting with a focus on delivering practical, high-impact solutions that help organizations navigate complex technology landscapes and achieve decisive advantage through data.

Close
Close

Liana Pannell

Director of Operations

Liana is a process-driven operations leader with nine years of experience in project management, technology program management, and business operations. She specializes in developing, scaling, and codifying workflows that drive efficiency, improve collaboration, and support long-term growth. Her expertise spans edtech, digital marketing solutions, and technology-driven initiatives, where she has played a key role in optimizing organizational processes and ensuring seamless execution.

With a keen eye for scalability and documentation, Liana has led initiatives that transform complex workflows into structured, repeatable, and efficient systems. She is passionate about creating well-documented frameworks that empower teams to work smarter, not harder—ensuring that operations run smoothly, even in fast-evolving environments.

Liana holds a Master of Science in Organizational Leadership with concentrations in Technology Management and Project Management from the University of Denver, as well as a Bachelor of Science from the United States Military Academy. Her strategic mindset and ability to bridge technology, operations, and leadership make her a driving force in operational excellence at VeriTech Consulting.

Close

Keri Fischer

COO & Founder

Founder & COO | Cybersecurity & Data Analytics Expert | SIGINT & OSINT Specialist

Keri Fischer is a highly accomplished cybersecurity, data science, and intelligence expert with over 20 years of experience in Signals Intelligence (SIGINT), Open Source Intelligence (OSINT), and cyberspace operations. A proven leader and strategist, Keri has played a pivotal role in advancing big data analytics, cyber defense, and intelligence integration within the U.S. Army Cyber Command (ARCYBER) and beyond.

As the Founder & COO of VeriTech Consulting, Keri leverages extensive expertise in cloud computing, data analytics, DevOps, and secure cyber solutions to provide mission-critical guidance to government and defense organizations. She is also the Co-Founder of Code of Entry, a company dedicated to innovation in cybersecurity and intelligence.

Key Expertise & Accomplishments:

Cyber & Intelligence Leadership – Served as a Senior Technician at ARCYBER’s Technical Warfare Center, providing SME support on big data, OSINT, and SIGINT policies and TTPs, shaping future Army cyber operations.
Big Data & Advanced Analytics – Spearheaded ARCYBER’s Big Data Platform, enhancing cyber operations and intelligence fusion through cutting-edge data analytics.
Cybersecurity & Risk Mitigation – Excelled in identifying, assessing, and mitigating security vulnerabilities, ensuring mission-critical systems remain secure, scalable, and resilient.
Strategic Operations & Decision Support – Provided key intelligence support to Joint Force Headquarters-Cyber (JFHQ-C), Army Cyber Operations and Integration Center, and Theater Cyber Centers.
Education & Innovation – The first-ever 170A to graduate from George Mason University’s Data Analytics Engineering Master’s program, setting a new standard for data-driven military cyber operations.

Career Highlights:

🔹 Senior Data Scientist – Led groundbreaking all domain efforts in analytics, machine learning, and data-driven operational solutions.
🔹 Senior Technician, U.S. Army Cyber Command (ARCYBER) – Recognized as the #1 warrant officer in the command, driving big data analytics and cyber intelligence strategies.
🔹 Division Chief, G2 Single Source Element, ARCYBER – Directed 20+ analysts in SIGINT, OSINT, and cyber intelligence, influencing Army cyber policies and operational training.
🔹 Senior Intelligence Analyst, ARCYBER – Built the Army’s first OSINT training program, improving intelligence support for cyberspace operations.

Recognition & Leadership:

🛡️ Lauded as “the foremost expert in data analytics in the Army” by senior leadership.
📌 Key advisor to the ARCYBER Commanding General on all data science matters.
🚀 Led the development of ARCYBER’s first-ever OSINT program and cyber intelligence initiatives.

Keri Fischer is a visionary in cybersecurity, intelligence, and data science, continuously pushing the boundaries of technological innovation in defense and national security. Through her leadership at VeriTech Consulting, she remains dedicated to helping organizations navigate the complexities of emerging technologies and drive mission success in an evolving cyber landscape.

Education:

National Intelligence University Graphic

National Intelligence University

Master of Science – MS Strategic Intelligence

 – 

George Mason University Graphic

George Mason University

Master of Science – MS Data Analytics

 –