Active Hunting Revealed: How vSOC Identifies Threats in Your Environment

Presented by

Stephen Jones, Dir. of Managed Services, GuidePoint Security & Kris Merritt, Sr. Director, Hunting Operations, CrowdStrike

About this talk

The GuidePoint Virtual Security Operations Center (vSOC) was designed to address many of the common complaints and issues customers experience with other managed service providers. We use the cloud to provide dynamic scalability and cost savings. vSOC analysts provide validated security incidents that allow you to focus on what’s really important: remediation. vSOC Detect now integrates with CrowdStrike Falcon by leveraging the Falcon Connect API to ingest Falcon host data in to the vSOC Detect monitoring platform. This integration enables vSOC Detect to leverage the CrowdStrike platform for endpoint monitoring and allows analysts to correlate endpoint data against SIEM security logs. This added correlation within our SIEM enables active hunting by vSOC Detect analysts to discover new and emerging threats in customer environments. Join us to explore “Hunting with CrowdStrike”— and how our Integrations make CrowdStrike Falcon Versatile and Effective. Topics will include: - Using the CrowdStrike Integration vSOC Detect - Learning how analysts can: - Perform ad-hoc searches and queries - Quickly Conduct comprehensive investigations - Identify insider threat activity - Create dashboards and reports

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (8)
Subscribers (1033)
GuidePoint Security