SIEM is Dead: Changing The Approach to Enterprise Security Monitoring

Manage webcast
Paul Stamp, Dir, Product Mktg, RSA, Josh Corman, Dir, Security Intelligence, Akamai, JJ Thompson, Rook Consulting,
A wise man once said "If you keep doing what you're doing, you keep getting what you're getting" and this applies to enterprise monitoring as well. Let's face it, the landscape of threats and risks has outpaced our efforts to monitor and respond to them. The SIEM market is into its second decade already, and is showing signs of its age. Keeping up with the evolving threatscape means making changes in how we observe and react to our attackers. The adversary continues to change their game in response to our defenses and it is time we changed our methods as well. Join (ISC)2 and RSA Security on July 19, 2012 at 1:00pm Eastern for a roundtable webinar where we explore models and methods for improving our situational awareness.
Jul 19 2012
62 mins
SIEM is Dead: Changing The Approach to Enterprise Security Monitoring
SIEM RSA (ISC)2 Security
More from this community:

IT Security

  • Live and recorded (5972)
  • Upcoming (113)
  • Date
  • Rating
  • Views
  • Channel
  • Channel profile
  • Professionalizing the Cloud Security Workforce Aug 20 2015 5:00 pm UTC 60 mins
    Jim Reavis, CEO of Cloud Security Alliance and David Shearer, CEO, (ISC)²
    (ISC)² and CSA recently developed the Certified Cloud Security Professional (CCSP) credential to meet a critical market need to ensure that cloud security professionals have the required knowledge, skills and abilities to audit, assess and secure cloud infrastructures. Join Jim Reavis, CEO of Cloud Security Alliance and David Shearer, CEO, (ISC)² on August 20, 2015 at 1:00PM Eastern to learn more about the CCSP, the qualifications for it and the future of cloud security.
  • Part 3 - Protecting Your Enterprise: Keeping Email Secure and eDiscovery Easy Aug 13 2015 5:00 pm UTC 60 mins
    Madhu Reddy, Global Product Manager, HP Security Voltage; Michael Osterman, Principal, Osterman Research
    Enterprises receive, create and store enormous amounts of email data each year: roughly 30,000 emails for every information worker, a large proportion of which contains attachments that are often sensitive or confidential. Increasingly, this information must be encrypted to ensure that data breaches are prevented and that data protection obligations are satisfied. At the same time, information must be retained for long periods in compliance with corporate, legal and regulatory obligations.

    However, encryption and archiving are often at odds with one another: data that must be encrypted can be rendered difficult or impossible to access when archived. Data that is archived, but not encrypted, can be more susceptible to data breaches. As a result, the use of an integrated eDiscovery solution becomes more critical than ever. Join HP/Voltage Security and (ISC)2 on August 13, 2015 at 1:00PM Eastern to learn how to protect your enterprise communications with data-centric email encryption ands make it easy to access encrypted and archived content in support of eDiscovery, regulatory and other requirements.
  • Beat The Clock - Endpoint Detection & Response Aug 6 2015 5:00 pm UTC 75 mins
    Mitchell Bezzina, Sec Product Mktg Mgr, Guidance; Dr. Randy Burkhead, Sen. Sec Consultant: Rafel Los, Director, Optiv
    Due to the widespread adoption and use of cloud applications, a burgeoning mobile workforce and the rise in APTs, endpoint risks have become more prevalent and a challenge to manage. Indeed, endpoint penetrations and breaches take only minutes to occur. An effective endpoint detection & response solution is critical to a timely response, as is properly trained incident response team. Join Guidance Software and (ISC)2 on August 6, 2015 at 1:00PM Eastern for a discussion on EDR and the need for effective Incident Response and automation to hasten mitigation.
  • Career Sherpa: From Security Expert to Security Leader Jul 30 2015 5:00 pm UTC 75 mins
    Michael Santarcangelo, Founder, Security Catalyst; Philip Casesa, CISSP, CSSLP, Dir of Service Ops, (ISC)2
    The biggest challenge in security is no longer technology. We need to rise from recognition as security experts and experts within security teams to leaders protecting information from a world of risk and vulnerabilities.

    Michael Santarcangelo cracked the code on the pathway to becoming an exceptional security leader. On July 30, 2015 at 1:00PM Eastern Michael will share the Exceptional IT Leadership Framework, including the 5 foundational elements, 9 competencies, and 5 essential habits. The webcast will explore the benefits of a framework-based, competency-driven approach to developing your leadership and how to assess where you really are in your leadership journey.
  • Briefings Part 2: Data-Centric Security: Why It's Necessary and How to Get It Recorded: Jul 16 2015 61 mins
    Sandy Borthick, Stratecast|Frost & Sullivan; Reiner Kappenberger, HP Security Voltage
    Large enterprises want to use all the data they can get to earn the trust and the dollars of their customers. At the same time, they must secure this data, which is increasingly the target of sophisticated cyber-attacks. Traditional triple A (access, authentication and audit) security solutions are no longer sufficient-data-centric security must be added to the mix. In this webinar, join Stratecast | Frost & Sullivan, HP Security Voltage and (ISC)2 on July 16, 2015 at 1:00PM Eastern for an examination of ICT technology trends and business policies that have brought us to this point and how format preserving encryption can be used to protect data at rest, in motion and in use.
  • Always On, Always Moving – Securing the Mobile Workforce Recorded: Jul 9 2015 61 mins
    Michael Shaulov, Head of Mobility Product Mgmt, CheckPoint; Frank Aiello, CISO, American Red Cross; Raj Goel, CTO, Brainlink;
    The rapid rise of mobile computing has caused more sleepless nights for security professionals than they would care to admit. Laptops, smart phones, tablets… most employees have one of each, and each needs to be protected. What are the best strategies to enable threat prevention for your mobile workforce? What exactly are the threats being seen today, and what could be around the corner tomorrow? Join Check Point Software and (ISC)2 on July 9, 2015 at 1:00PM Eastern for a roundtable discussion on tackling mobile security challenges to keep on-the-go employees productive and your enterprise secure.
  • A Practical Guide to Meeting Cybersecurity Requirements Recorded: Jul 1 2015 59 mins
    Adrian Davis, Managing Director (ISC)2 EMEA | Craig Isaacs, CEO Unified Compliance
    Cybersecurity is a mess. The number of guides, standards, laws, rules, and regulations grows every day, and most organisations don’t have the ability or the resources to handle the continuously changing (and expanding) set of requirement:

    In this webinar run jointly by (ISC)2 and Unified Compliance, you will learn

    · How to efficiently manage complex compliance requirements by creating customised control sets and compliance templates in seconds

    · What harmonisation of compliance across multiple regulations, standards & frameworks looks like—including Sarbanes Oxley to FFIEC, PCI, GLBA and HIPAA to CMS, NERC, NIST, and ISO among others

    · How to understand and clarify overlaps and conflicts between documents in your regulatory requirements

    · How to save time and eliminate duplicate efforts by asserting compliance across multiple authority documents simultaneously

    Taking this new approach will save organisations considerable time, effort, and resources when it comes to audit and cybersecurity compliance. More importantly, this will improve the efficiency and effectiveness of their overall Governance, Risk Management, and Compliance programs.
  • Turning the Human Firewall on Recorded: Jun 30 2015 59 mins
    Adrian Davis, Bruce Hallas, Lee Barney
    Securing change in employee behaviour, to ensure compliance with organisational policy and to reduce risk to an organisation, relies on employees making a discretionary effort with a positive security outcome. How can security leaders secure not just employee awareness but most importantly positive security behaviours to support embedding security into corporate culture?
    Adrian Davis, MD (ISC)2 EMEA
    Bruce Hallas, Founder, Analogies Project
    Lee Barney, Head of Information Security, Home Retail Group
  • Economies of Scale - Right Sizing Cloud Security Recorded: Jun 25 2015 59 mins
    Andrew Leeth, CISSP, Product Security Eng, SalesForce; Chuck Gaughf, (ISC)2; Brandon Dunlap: Rob Ayoub, NSS Labs
    While the economics of moving workloads to the cloud is well understood by small and medium sized businesses (SMBs), they often struggle with corresponding economics associated with these changes in security challenges. These SMBs often rely on service providers and suppliers for security, but how can they take control or have more of a hand in the security of the cloud services they are using? Join (ISC)2 and our sponsor Sophos on June 25, 2015 for our next From the Trenches where we’ll discuss cloud security and challenges SMBs face when leveraging cloud services.
  • 5 Key Steps to Enabling Secure Data Sharing & Analytics in Hadoop Recorded: Jun 11 2015 60 mins
    Reiner Kappenberger, Global Product Mgmt, HP Security Voltage; William Peterson, Director, Product Marketing, MapR Tech
    Security Briefings Part 1 - Big data analytics and Hadoop environments come with myriad benefits-but also new risks to enterprises. In the past, cyber-attackers had to search for high-value information across a wide range of systems. But with centralized data, hackers can focus on a known, single target. Even when key information is considered secure, there's still a high risk that sensitive information can be re-identified by utilizing multiple data sets. Join HP Security Voltage, MapR and (ISC)2 on June 11, 2015 at 1:00PM Eastern for 5 steps in protecting critical data and learn how to build a strategy and methodology to secure big data in Hadoop.
  • Ponemon Study: True Cost of a Data Breach Recorded: Jun 10 2015 59 mins
    Adrian Davis, Managing Director (ISC)2 EMEA | Gavin Kenny, Associate Partner IBM Security
    Join IBM and (ISC)2 to learn about the latest Cost of a Data Breach study and discuss the implications of the study for today's businesses.
    In this live webinar, you will learn the key findings of the Cost of a Data Breach study, including:
    -Major factors that affect the financial consequences of a data breach
    -How companies changed their operations and compliance following a breach
    -Most common cybersecurity governance challenges
    -Why companies failed to stop data breaches
  • Securing Your Open Source Assets Recorded: Jun 4 2015 59 mins
    Bill Weinberg, Senior Director, Black Duck Software, Dan Cornell, Founder-CTO, Denim Group; Opheliar Chan, Security Compass
    Open source software (OSS) has become pervasive in applications development and infrastructure alike. Indeed, enterprise deployment of OSS has doubled since 2010, and today 8 in 10 organizations report running their businesses on OSS. With broader deployment, both technology companies and enterprise IT have gained comfort with integrating and deploying OSS. At the same time, of the 8000-9000 IT security vulnerabilities catalogued annually, approximately 40% target open source code. The extent of this threat is underscored by critical vulnerabilities like Heartbleed, Poodle, Logjam and Venom. Join (ISC)2 and Black Duck Software on June 4, 2015 at 1:00PM Eastern for a discussion of the state of open source software security and the best ways keep your open-source based applications and infrastructure safe.
  • Inside (ISC)2 With David Shearer, Executive Director, (ISC)2 Recorded: May 28 2015 58 mins
    David Shearer, Executive Director (ISC)2
    As an (ISC)2 member or a practitioner considering certification or membership, wouldn't you like to have the ability to interact with an (ISC)2 Board Member, Director or Manager to ask questions or discover what's being worked on within the organization that will benefit the members or the industry in general? Our new webinar series, Inside (ISC)2 will feature various key personnel within the organization interacting with and answering questions from members and non-members alike in a moderated webcast setting. This is chance to find out, first hand, what's going at (ISC)2 and ask your questions of the key people making decisions at the organization. First up, join us on May 28, 2015 at 1:00PM as David Shearer, Executive Director, stops by to answer your questions.
  • From the Trenches - Leading Practices in Securing Electronic Healthcare Records Recorded: May 21 2015 58 mins
    Brian Rappach, IS Security Project Leader, TriHeath; Ray Potter, SafeLogic, CEO; Eric Walters, Dir & CISO U of Kansas Medical
    Electronic Healthcare Records (EHRs) and the information they contain have become the top target of cybercriminals around the world. Several high profile healthcare-related data breaches have made the headlines in recent months and more are sure to come. What is it about the information contained in EHRs that is so enticing and how can it be better secured? Join (ISC)2 and Sophos on May 21, 2015 at 1:00PM Eastern for a discussion of the security of healthcare data and approaches on how to better protect this type of information.
  • IBM X-Force: Insights from the 1Q 2015 X-Force Threat Intelligence Quarterly Recorded: May 20 2015 60 mins
    Simon Smith, Security Technical Specialist, IBM UK
    2014 brought significant change for the internet security industry. According to IBM's latest X-Force report:
    - Over 1 billion records of PII were leaked in 2014
    - Vulnerability disclosures rocketed to a record high in 2014, and designer vulns like Heartbleed and Shellshock revealed cracks in the foundation of underlying libraries on nearly every common web platform
    - Crowd-sourced malware continues to mutate, resulting in new variants with expanding targets
    - App designer apathy is negatively impacting security on mobile devices.
    Join (ISC)2 and IBM to learn more about the findings of the latest IBM X-Force report and X-Force Interactive Security Incident website, designed to help users gain in-depth understanding of security breaches publicly disclosed over time.
  • Briefings Part 3: Effective Identity & Access Mgmt for Today’s Modern Cloud Recorded: May 14 2015 62 mins
    Kurt Johnson, VP Corp. Development, Courion; Frank Aiello Exec Dir and CISO, American Red Cross
    Your users demand access everywhere, any time, via any device. Whether it’s cloud or traditional on-premise applications, it’s critical that organizations provide access to those who need it while mitigating access risk and maintaining compliance. Join (ISC)2, Courion and the American Red Cross on May 14, 2015 at 1:00PM Eastern for an informative session that will show how the American Red Cross is addressing this issue with a strategy around provisioning, governance, federation, and single sign-on via a seamless and integrated IAM solution for managing cloud and enterprise access.
  • Running Windows Server 2003 in a Post-Support World Recorded: May 14 2015 62 mins
    Christopher Strand, Sr. Global Director of Compliance - IT Governance, Risk, and Security Audit Programs, Bit9
    Even with the imminent end of support for Windows Server 2003 (W2K3), you may still be planning to continue running W2K3 in production. But with a never-ending stream of new exploits, vulnerabilities, and zero-day malware, how can you continue to maintain control and keep those systems safe and secure? (ISC)2 and Bit9 are hosting this webcast which will focus on looking at how to help prevent, detect and respond to advanced threats on endpoints and ensure continued compliance of W2K3 systems.
  • In Clouds We Trust: Making the transition to Office 365 Recorded: May 7 2015 61 mins
    Nate Fitzgerald, Intel Security: Chuck Gaughf, (ISC)2; Matt Gamgwar, Rook Security; Brandon Dunlap
    Moving to the cloud is always a difficult decision, but when you look at the impact of solutions as broad reaching as Office 365, chances are your primary concern is going to be about security. There are a number of facets and features (e-mail, OneDrive, Lync) to Office 365 and the security issues can be myriad. Join Intel Security and (ISC)2 on May 7, 2015 at 1:00PM Eastern for a discussion on how to overcome these challenges through critical protection and often overlooked best practices to build the confidence you need to securely deploy Office 365.
  • State of the Industry - (ISC)2's Global Workforce Study Recorded: Apr 30 2015 61 mins
    Julie Peeler, (ISC)2 Foundation Director; Mark Aiello, President, Cyber 360 Inc.; Elise Yacobellis, (ISC)2
    Every two years, (ISC)2 surveys infosecurity practitioners from around the world about the profile of the global information security workforce. This year, over 12,000 professionals from 135+ countries responded to the survey to provide invaluable insight about their careers, positions and organizations. Join Julie Peeler, (ISC)2 Foundation Director and other industry experts on April 30, 2015 at 1:00pm Eastern for an examination and discussion of the survey results, gain insight into what hiring managers and looking for in job candidates, the areas of expertise in demand and the challenges facing infosec pros around the world.
  • Briefings Part 2: Harvard Pilgrim Health Care Case Study Recorded: Apr 28 2015 61 mins
    Mark Teehan Manager IT Security, Harvard Pilgrim Health Care; Kurt Johnson, Courion
    Keeping Compliance in Check & Controlling Access Risk:

    Learn how one of the nation's largest health insurers provides access to users efficiently and effectively while also assuring that private constituent data is protected in compliance with HIPAA, HITECH and other federal and state privacy and security regulations. Join (ISC)2, Courion and Harvard Pilgrim Health Care on April 28, 2015 at 1:00pm Eastern to learn how the information security team is able to identify and remediate user access risks such as unnecessary privileged access, orphaned and abandoned accounts, and system or non-human accounts that call for administrative oversight.
(ISC)2 hosts a monthly panel discussion around different thought engaging topics within the information security sector.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: SIEM is Dead: Changing The Approach to Enterprise Security Monitoring
  • Live at: Jul 19 2012 5:00 pm
  • Presented by: Paul Stamp, Dir, Product Mktg, RSA, Josh Corman, Dir, Security Intelligence, Akamai, JJ Thompson, Rook Consulting,
  • From:
Your email has been sent.
or close
You must be logged in to email this