How to Detect Zero Day Attacks with an Analytics-Driven SIEM

Presented by

Peter Varhol, Technology Evangelist, Gurucul

About this talk

Zero day attacks are one of the most insidious security attacks for analysts to detect and mitigate. Because there are no published reports on them, security analysts have no idea what to look for. And because of the creativity of attackers, there are any number of ways for that attack to occur, and any possible number of bad outcomes for not quickly identifying it. Organizations have to be vigilant in observing and monitoring networks, systems, and traffic to identify attacks of unknown intent and composition. The pressure of zero day attacks on organizations and their security personnel is enormous, because of the uncertainties surrounding the type of attack and the vulnerability being exploited. This webinar describes zero day attacks and provides examples of attacks that have had significant consequences to organizations. It discusses how SIEMs using machine learning algorithms can be used to analyze traffic to quickly identify potential attacks and enable security analysts to mitigate those attacks before they cause harm to IT systems. Attendees will learn: 1. Why zero day attacks can have a devastating impact on organizations. 2. Why zero day attacks are so difficult to identify. 3. How SIEMs using machine learning can enable organizations to quickly identify such attacks.

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (69)
Subscribers (3228)
Gurucul is transforming enterprise security with user behavior based machine learning and predictive analytics. Using identity to monitor for threats, Gurucul provides Actionable Risk Intelligence™ to protect against targeted and under-the-radar attacks. Gurucul is able to proactively detect, prevent, and deter advanced insider threats, fraud and external threats to system accounts and devices using self-learning, behavioral anomaly detection algorithms. Gurucul is backed by an advisory board comprised of Fortune 500 CISOs, and world renowned-experts in government intelligence and cyber security. The company was founded by seasoned entrepreneurs with a proven track record of introducing industry changing enterprise security solutions. Our mission is to help organizations protect their intellectual property, regulated information, and brand reputation from insider threats and sophisticated external intrusions.