Lab Test Reveals 10x Productivity Gain From Real-Time Threat Intelligence

Presented by

Chris Pace of Recorded Future, Robert Perdue of Codis Technologies

About this talk

To quantify the value that SOC (security operations center) analysts gain from integrating real-time threat intelligence into their SIEM (security information and event management) solution, Recorded Future commissioned Codis Technologies to conduct a lab test. The independent lab test revealed: * Applying real-time threat intelligence powered by machine learning cuts analyst time to triage a security event from a firewall log from three minutes to 1.2 seconds on average (in a controlled environment), resulting in a 10x gain in productivity. * SOCs are unable to effectively examine some logs, such as firewall logs, as it is too much data with insufficient context to identify relevant threats hidden within them. * Real-time threat intelligence can be automatically applied to potential indicators of compromise in logs by enriching them with external context and quantifying risk. Codis Technologies is an information security consulting firm specializing in incident detection, incident recognition, and process automation.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (45)
Subscribers (17082)
Recorded Future arms security teams with threat intelligence powered by patented machine learning to lower risk. Our technology automatically collects and analyzes information from an unrivaled breadth of sources and provides invaluable context that’s delivered in real time and packaged for human analysis or instant integration with existing security technology.