Hi [[ session.user.profile.firstName ]]

Investigate Security Incidents Like a Boss

For security teams, having the ability to investigate a security incident quickly and accurately is still the most fundamental skill needed to combat the majority of cyberthreats and attacks. The average organization is being attacked on a weekly basis, without the right processes and tools in place to pinpoint root cause without delay, and put the right countermeasures in place in time to minimize damage.

Join us in this 1-hour webinar to learn:
•Why investigating security and non-compliance incidents can be so difficult
•Why machine data generated by your business is so important to security
•How to get better at performing investigations -- regardless of the size or skill level of your security staff

We will provide a methodology to help you align how you think about your organization’s security processes – the goal is to help you develop an investigative mindset that addresses a broad range of security and compliance concerns, in a pragmatic and targeted manner, specific to your own needs.
Recorded May 6 2020 53 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Jae Lee, Director, Product Marketing, Splunk Inc.
Presentation preview: Investigate Security Incidents Like a Boss

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • Splunk Predictions 2021 May 5 2021 4:00 pm UTC 59 mins
    Doug Merritt, CEO | Kristen Robinson, Chief People Officer | Tim Tully, CTO | Sendur Sellakumar, Chief Product Officer
    In this world of digital interconnectedness where new possibilities emerge, data-driven technologies will lead the way. But which ones?

    During this dynamic moderated panel discussion, we’ll look at the impact of rapidly accelerating digital transformation in the IT and security spaces and at the emerging technologies shaping our lives.

    What to expect:

    - Hear experts weigh in on which trends and technologies will shape the year(s) to come
    - Discuss challenges and the effects of AI/ML and the democratization of great customer experience
    - Understand the strategic challenges ahead and the most effective approaches to data security
    - Explore trailblazing technologies like 5G and edge computing that will make an outsize contribution to organizations’ success
  • What's New With APM? Apr 27 2021 1:00 pm UTC 50 mins
    Ori Broit, Senior Product Marketing Manager - Splunk Dave McAllister, Senior Technical Evangelist - Splunk
    Monitoring the performance and availability of applications has never been more important. Today’s DevOps teams are responsible for ensuring high-quality, always-on digital experiences while reliably supporting increasingly frequent - often daily - code pushes.

    No one understands this better than Splunk. We recently launched the new release of Splunk APM to help DevOps teams maintain the highest levels of application performance and elevate end user experiences. Join us live to learn more about how massive changes in the world of applications inspired us to redefine the APM market. What you’ll get from this webinar:

    - Learn about new trends and challenges in monitoring applications
    - Discover new approaches to Application Performance Monitoring
    - See a live demo of the latest release of Splunk APM recently announced by Splunk
  • New Approach for Observability in Kubernetes Environments Apr 21 2021 12:00 pm UTC 21 mins
    Robert Castley, Staff Sales Engineer EMEA at Splunk
    While Kubernetes abstracts away many infrastructure complexities enabling DevOps teams to move faster and scale efficiently, it also introduces new operational and monitoring challenges. DevOps and SRE teams grapple with challenges in monitoring dynamic and ephemeral containerized environments. According to the latest CNCF survey, monitoring and complexity are the top inhibitors in Kubernetes adoption. Applying traditional approaches to monitoring in cloud-native environments doesn’t work.

    A new, multidimensional approach is needed to gain observability and real-time monitoring. Learn how Splunk is helping DevOps teams successfully navigate through the complexity that Kubernetes bring. What you'll learn from this webinar:

    - Challenges in monitoring Kubernetes orchestrated workloads
    - How to achieve real-time observability into Kubernetes deployments
    - Demo of Kubernetes Navigator, a turnkey solution for DevOps teams to understand and manage performance in Kubernetes environments
  • Observabilité multi-cloud : 3 défis majeurs à relever Recorded: Apr 7 2021 53 mins
    Stephane Estevez, EMEA Director of Product Marketing, IT Markets at Splunk
    Le cloud offre un large éventail d'avantages mais la migration depuis votre infrastructure locale, ou l'ajout de clouds supplémentaires, peut créer de nouveaux obstacles à surmonter pour les équipes IT. Les trois défis les plus courants sont les suivants :

    superviser une architecture multi-cloud hybride aussi dispersée ;
    moderniser vos outils, lorsque la mesure de l'utilisation du CPU une fois par minute n'est plus logique pour les conteneurs ;
    savoir comment un composant de la pile technologique tel que SAP ou un micro-service influe sur les objectifs de l'entreprise.
    Ces problèmes sont communs et illustrent quelques préoccupations actuelles. Aujourd’hui, soutenir les efforts de transformation numérique signifie pour vous que la supervision est nécessaire, que le besoin pour l’observabilité est réel et que la dépendance aux DevOps est indéniable.

    Que vous soyez un DevOps, un SRE, un CTO ou un administrateur système, vous pouvez participer à ce webinaire pour apprendre :

    - ce qu'est l'observabilité et en quoi elle diffère de la supervision ;
    - comment la supervision évolue vers l'observabilité ;
    - comment améliorer votre MTTD et votre MTTR grâce à une visibilité en temps réel et à une analyse de flux basée sur l'IA ;
    - comment la supervision des infrastructures Splunk peut vous aider à suivre le rythme, à consolider vos ensembles d'outils et à éliminer les silos pour anticiper les problèmes avant qu'ils ne surviennent.
  • Eliminate Telehealth Outages and Disruptions to Improve Digital Patient Outcomes Recorded: Apr 6 2021 38 mins
    Wiley Vasquez, Staff IT Operations Specialist, Splunk | Murthy Mathiprakasam, Director, IT Product Marketing, Splunk
    Healthcare organizations are increasingly relying on telemedicine services to reduce the waiting time for patients to receive the care they need. Events such as the COVID-19 outbreak of 2020 can also prioritize the development and planning of new technology based digital services for both external stakeholders like patients.

    In this webinar, learn how Splunk’s IT solutions can help you become more service-centric and drive greater availability and performance with your telehealth services.

    • Make data-informed staffing decisions, collaborating with local, state and federal partners so hospitals and clinics are safer for both patients and healthcare professionals
    • Scale services on-demand to deliver acceptable levels of end-user experience
    • Maintain uptime and continuity of mission-critical applications
  • MITRE ATT&CK: l’esperienza degli avversari al servizio del tuo SOC Recorded: Apr 6 2021 60 mins
    Antonio Forzieri, EMEA Cyber Security Specialization and Advisory - Splunk
    "Stai pensando di utilizzare il framework MITRE ATT&CK all’interno del tuo SOC? Vorresti costruire un modello di maturità che ti permetta di diventare sempre più efficace nella rilevazione delle minacce, basato su uno standard internazionale? Segui per approfondire:

    - Cosa è il framework ATT&CK e da cosa è composto
    - Come migliorare la visibilità del tuo SOC grazie al MITRE ATT&CK
    - Come trarre il massimo dei benefici da ATT&CK
    - Come utilizzare le informazioni sugli attaccanti e le loro tattiche, tecniche e procedure (TTPs) per rafforzare le tue difese"
  • Die 3 gängigsten Observability-Herausforderungen der Multi-Cloud & wie Sie diese Recorded: Mar 31 2021 49 mins
    Ralf Walkenhorst, IT Operations Analytics Sales Specialist EMEA
    Die Cloud bietet viele Vorteile. Doch die Migration von Ihrer lokalen Infrastruktur oder das Hinzufügen weiterer Clouds zu Ihrer bestehenden Infrastruktur kann IT-Teams vor ganz neue Herausforderungen stellen – und diese gilt es zu meistern. Drei der gängigsten Herausforderungen sind:

    - Das Monitoring einer verteilten hybriden Multi-Cloud-Architektur
    - Die Modernisierung Ihrer Tools, wenn eine minütliche Messung der CPU-Nutzung für Container nicht mehr sinnvoll ist
    - Zu wissen, wie sich eine Tech-Stack-Komponente wie SAP oder ein Microservice auf die Geschäftsziele auswirkt
    - Diese häufigen Probleme verdeutlichen, dass die Unterstützung der digitalen Transformationsbemühungen eines Unternehmens verschiedene Aspekte umfasst: Es braucht Monitoring, um den nächsten Schritt zu machen, es - gibt einen größeren Bedarf im Bereich Observability und es kommt zu einer stärkeren Abhängigkeit von DevOps.

    Ganz gleich, ob Sie DevOps-Anwender, SRE, CTO oder Systemadministrator sind, nehmen Sie an diesem Webinar teil und erfahren Sie:

    - Was Observability ist und wie sie sich vom Monitoring unterscheidet
    - Wie sich Monitoring zu Observability weiterentwickelt
    - Wie Sie Ihre MTTD und MTTR durch Echtzeit-Sichtbarkeit und AI-gestützte Streaming-Analysen verbessern können.
    - Wie Ihnen Splunk Infrastructure Monitoring helfen kann, Schritt zu halten, Tool-Sets zu konsolidieren und Silos zu eliminieren, um Probleme zu beseitigen, bevor sie sich auf Ihr Unternehmen auswirken.
  • Adapting to Rapid Change with Splunk APM Recorded: Mar 30 2021 58 mins
    Jose Manuel Silva, Senior Sales Engineer at Splunk Inc. Derek Desjardins, Sales Engineer at Splunk Inc."
    2020 has ushered in rapid change in everything we do, from banking and grocery shopping, to working and learning from home. New technologies such as cloud and microservices as well as practices such as DevOps help organizations adapt to these changes. But these new technologies introduce their own challenges, including migration, manageability and more.

    Join Splunk’s Sales Engineers Jose Manuel Silva Vela and Derek Desjardins as they share their experience of how their customers were able to leverage Splunk APM, part of our Observability Suite, to overcome these challenges. Splunk APM provided their customers with the visibility and control they needed to quickly detect and resolve ANY user-impacting issue, reduced time spent on troubleshooting and enabled their customers to devote more time to creating new features.

    Hear first hand from our experts what you need to know in order to get the maximum benefit from Splunk APM. In this webinar, you will learn:

    - How modern architectures and practices can help you adapt to rapid change
    - The challenges and hurdles to monitor modern environments
    - How Splunk APM helped organizations in today’s rapidly changing environments
    - How to set yourself up for success with Splunk APM
  • Security Master Chef: la ricetta per visibilità, risposta e prevenzione in ogni Recorded: Mar 30 2021 62 mins
    Francesco Gelo, Senior Sales Engineer - Splunk & Yvette Agostini, Cofondatore e Segretario - CSA Italy
    La velocità di adozione con cui le aziende stanno abbracciando i servizi cloud è accompagnata da crescenti incidenti di sicurezza che si espandono facilmente dalle piattaforme on-premise a quelle multi-cloud, per arrivare alle applicazioni SaaS. E secondo una previsione Gartner, entro il 2023 ""almeno il 99% degli errori di sicurezza del cloud sarà responsabilità del cliente"".
    L'impegno costante e continuo dei team di sicurezza nell'essere operativi, proattivi e rapidi per stabilire la corretta visibilità nel cloud, può portare a tralasciare altre fasi importanti nella preparazione per la risposta agli incidenti. E ogni ""Master Chef"" sa che la preparazione è la chiave di ogni piatto vincente. Segui questo webinar per:

    - Imparare la ricetta per accelerare gli sforzi dei team di sicurezza, dalla comprensione della superficie del rischio all'operatività
    - Scoprire quali sono gli ingredienti chiave del rilevamento, dell'indagine e della risposta intelligenti su più servizi cloud
    - Apprendere come utilizzare ""la salsa segreta"" della prioritizzazione degli avvisi intelligenti per concentrarsi su ciò che conta di più
    - Dare uno sguardo a come viene eseguito il rilevamento end-to-end di un fattore di rischio comune come la perdita di credenziali di accesso tramite API
  • Security Master Chef: A Visibility and Response Recipe for Any Cloud Environment Recorded: Mar 25 2021 64 mins
    Joshua Cowling - Consulting Sales Engineer at Splunk Angelo Brancato - Executive Cyber Security Advisor at Splunk
    Organizations are adopting cloud services at a rapid speed, and security incidents are spanning across on-premises, multi-cloud platforms, and many unique or interconnected SaaS Apps. Pair this with Gartner’s prediction that by 2023 “at least 99% of cloud security failures will be the customer’s fault” – this could be a recipe for disaster.

    With security teams struggling to be more proactive and fast enough to establish visibility in the cloud, important preparation steps for incident response are being missed. And any ‘Master Chef’ knows that prep is key to any winning dish. Join this webinar to:

    - Learn the recipe for speeding up security team efforts, from understanding the risk surface to operationalization
    - Learn how to implement the key ingredients of intelligent detection, investigation and response across multiple cloud services
    - Find out how to use ‘the secret sauce’ of intelligent alert prioritization to focus on what matters most
    - See how the detection of a common risk factor such as API Credential Leakage is baked in end-to-end

    Presented by Joshua Cowling - Consulting Sales Engineer at Splunk

    Angelo Brancato - Executive Cyber Security Advisor at Splunk

    Matthias Maier - Director of Product Marketing, Splunk
  • Cloud Infrastructure in 2021: Protecting & Accelerating the Modern Business Recorded: Mar 24 2021 62 mins
    Panelists from: HashiCorp, Splunk, Hitachi Vantara, Orasi Software, Nasuni, and Bambucluster
    42% of respondents to BillingPlatform ‘Trends in Finance: 2021 Market Outlook & Strategies for Growth’ said that they plan to adapt to the new global economic environment by investing in cloud-based technologies. In addition, Baker McKenzie’s ‘2020 Digital Transformation & Cloud Survey: The Future of Enterprise Data’, found that cloud remains on the top of the list of essential technology for enterprises. With cloud adoption accelerated by COVID-19 - and the pandemic increasingly leaving little room for error around cloud investment and management decisions - it’s imperative that businesses are clued up and confident in their strategies. In 2021, it’s vital that businesses’ IT Infrastructure investments both protect and accelerate their organizations, allowing them to lead with agility and innovation.

    Join this panel of cloud and infrastructure experts as they discuss how IT leaders and businesses can effectively utilize cloud technologies in 2021. Topics of discussion will include:

    -Best practices for assessing which cloud strategy - public, hybrid, or multi - is right for you in 2021
    -Essential capabilities IT teams need to maintain modern cloud infrastructures and ensure ROI in a new global landscape
    -What to know about cloud cost management and gaining visibility of IT budget sprawl as the pandemic continues to impact organizations globally
    -and more!

    Daniel Callao, Cloud Solutions Architect at HashiCorp
    Stephane Estevez. EMEA Director of Product Marketing, IT Markets at Splunk
    Tom Christensen, CTO & Customer Advocacy - Northern EMEA at Hitachi Vantara
    Terry Brennan, Managing Director at Orasi Software, Inc.
    John Capello, VP of Product Strategy at Nasuni
    Srinivasan Ramaswamy, Co-Founder & CEO at Bambucluster
  • Data Age Series Ep3 - Thriving in the Data Age Recorded: Mar 16 2021 48 mins
    James Hodge, Splunk I William McKnight, McKnight Consulting Group I Kat Holmes, Travelex
    According to a recent survey, two-thirds of organisations are expecting the value and amount of data to grow almost 5x by 2025. The ‘Data Age’ is here to stay, and the way that we prepare now and the actions we take today will impact our ability to thrive. Embracing technologies like 5G, IoT, blockchain and edge computing, will increase the volume of data produced, and the ways in which data can be used productively to transform business strategy.

    Join us in this final episode as we discuss:
    - How cloud both fuels the ‘Data Age’ and can help navigate it
    - How different industries, including retail, healthcare, finserv, manufacturing and the private sector are embracing the ‘Data Age’
  • Data Age Series Ep2 - Preparing for the Data Age Recorded: Mar 9 2021 54 mins
    James Hodge, Splunk I Jasmina Lazic, Bayes Centre, Uni. Edinburgh I Jason Sarayno, Uniper I Maija Hovila, Kone
    Out of the 86% of businesses who reported that they are not ready for the ‘Data Age’, only 8% think that they will be ready in time. As businesses confront the rising tide of data, they will face certain challenges and hurdles. Being as prepared as possible, adapting to digital transformation, and shifting mindsets and cultures is key to making the most out of this business change.

    Join us in this episode, as we share:
    - How businesses can evolve from being data collectors to data innovators
    - The fundamental hurdles to overcome, from coping with the data wave to adopting new technologies
    - Recommendations from thought leaders on building a model and strategy to cope with the incoming data wave
  • Data Age Series Ep1 - Defining the Data Age Recorded: Mar 2 2021 51 mins
    James Hodge, Splunk I Ramesh Dontha, Digital Transformation Pro I Amit Bhattacharyya, Vox Media
    The Data Age Series Episode 1

    A recent survey reported that 86% of organisations are not ready for the ‘Data Age’. The force of digital transformation is stronger than ever before, causing data volumes to skyrocket and driving innovation and revenue growth. Data has become the fastest growing business asset, from providing valuable customer insight, to influencing your security strategy. Understanding the ‘Data Age’, and defining what it means for your business, is key to being prepared.

    Join us in this session as we discuss:
    - The transformative technologies that have influenced the ‘Data Age’
    - Trends in technology, from 5G to AI, and augmented reality to IoT, that have advanced digital transformation
    - The level of preparedness in organisations today to survive and capitalise on this coming wave of data
  • Four Stages for Government Security Teams to Manage Risk Recorded: Feb 23 2021 40 mins
    Cam Beasley, CISO, UT Austin | Jae Lee, Product Marketing, Splunk Inc.
    To achieve comprehensive and effective cybersecurity, organizations first need to understand where they reside on the security maturity curve.

    Gain the insights you need by listening to this webinar, 4 Steps to Government Security, available on demand. Moderated by CSO, the webinar features a fireside chat with Cam Beasley, CISO of the University of Texas at Austin and Splunk, who examine the security challenges facing highly regulated organizations today, and explain how to leverage data from a broad range of sources to improve your security posture.


    Cam Beasley,
    UT Austin

    Jae Lee,
    Director, Product Marketing,
    Splunk Inc.
  • Aligning the Modern SIEM with MITRE ATT&CK Recorded: Jan 26 2021 61 mins
    Kyle Champlin, Splunk Inc. | Ryan Kovar, Splunk Inc. | John Wunder, MITRE | Matt Valites, Cisco Talos
    Although MITRE ATT&CK is famous for making security analyst's lives easier, there is sometimes a learning curve to a company adopting the MITRE ATT&CK framework and implementing it into their SIEM. Join SIEM experts from the MITRE ATT&CK team, Cisco Talos Group, and Splunk to discuss the challenges (and solutions!) with using MITRE ATT&CK with a modern SIEM. Join us in this webinar to learn:

    - How security teams can derive value from using MITRE ATT&CK with a SIEM
    - Common issues organizations run into and guidance on how to improve security posture
    - How to supercharge your SIEM with MITRE ATT&CK and use it to your advantage
    - ATT&CKing your SIEM rules: how to map taxonomies and the difficulties you might face
    - Planning your defenses with Matrices
  • Navigating Cloud Pitfalls in the New Normal Recorded: Jan 20 2021 43 mins
    Stephen Elliott, Program VP, Management Software and DevOps, IDC | Johnathon Cervelli, Chief Technical Advisor, Splunk Inc.
    While adopting the cloud can be transformative – and in our increasingly digital world, an imperative – it also increases complexity.

    Everyone who is accelerating moving to the cloud knows the benefits. But what are the associated pitfalls and how can you avoid them? In this webinar, Johnathon Cervelli, Splunk Chief Technical Advisor, and Stephen Elliot, IDC Program VP, Management Software and DevOps, will discuss how the right data strategy can help realize the promises of the cloud while avoiding often-overlooked pitfalls – ultimately, empowering organizations to succeed in and accelerate their transformation strategies.

    What we’ll cover:
    - The state of cloud adoption and its impact on DevOps and I&O teams
    - What’s changed in response to the pandemic
    - Six pitfalls organizations face in moving to the cloud and the data strategies necessary to overcome them
  • Practical Lessons in IT Modernization Success Recorded: Jan 14 2021 34 mins
    Marques Young, US Dept. of Commerce | Joshua Scheurer, State of Michigan | Ashok Sankar, Splunk, Inc.
    Modernization and cloud migration initiatives are disrupting public sector organizations as IT environments shift under their feet. According to a recent survey, replacing aging systems and reducing agency risk remain top drivers and more than 50% of respondents expect a hybrid environment as the end state of their IT modernization efforts. But only 13% say they are either very confident or confident in their ability to modernize current systems and applications, including cloud/hybrid migrations.

    Listen to this on demand webinar to learn how State of Michigan and the International Trade Administration under the U.S. Department of Commerce have been able to modernize their IT environments and make confident decisions to drive positive mission outcomes.


    Marques Young,
    SOC Manager,
    International Trade Administration,
    U.S. Dept of Commerce

    Joshua Scheurer,
    System Architect,
    State of Michigan

    Ashok Sankar,
    Director, Solutions Marketing,
    Splunk Inc.
  • Four Stages for Government Security Teams to Manage Risk Recorded: Jan 7 2021 40 mins
    Cam Beasley, CISO, UT Austin | Jae Lee, Product Marketing, Splunk Inc.
    To achieve comprehensive and effective cybersecurity, organizations first need to understand where they reside on the security maturity curve.

    Gain the insights you need by listening to this webinar, 4 Steps to Government Security, available on demand. Moderated by CSO, the webinar features a fireside chat with Cam Beasley, CISO of the University of Texas at Austin and Splunk, who examine the security challenges facing highly regulated organizations today, and explain how to leverage data from a broad range of sources to improve your security posture.


    Cam Beasley, CISO,UT Austin
    Jae Lee, Director, Product Marketing, Splunk Inc.
  • Cybersecurity in an Uncertain World - New Ways to Confront New Ransomware Threat Recorded: Dec 16 2020 60 mins
    Lee Imrey, Splunk Inc. | Deborah A. Snyder, Center for Digital Government | Dan Lohrmann, Security Mentor Inc.
    State and local governments today face unprecedented threats to network security. Foreign hackers, ransomware attacks and other forms of malware have skyrocketed in recent years, costing governments millions of dollars in productivity. And these attacks don’t just cost money – they can potentially sideline hospitals, cripple emergency response efforts, and even shut down vital public infrastructure such as dams, energy grids and transit systems.

    The near-national lockdown in response to COVID-19 has exacerbated these threats, exposing governments to new vulnerabilities and even greater risks. Remote workers are more susceptible to phishing scams and other email hacks. And with tens of thousands of public employees suddenly working from home – often using their own devices on unsecured wireless networks – government systems are ripe for attack.

    In this extremely high-pressure time, it’s never been more important for governments to get it right on cybersecurity. This critical webinar will explore the latest emerging cyberthreats, and the strategies, best practices and technological tools that states and cities are using to meet the challenge.

    Join us for an interactive forum with public officials and industry experts, on issues including:
    • The biggest cybersecurity threats today – and the greatest emerging challenges for the future
    • The steps you can take right now to improve your protection and preparedness for ransomware attacks
    • How better analytics, monitoring and alerting can aid in threat detection and contextualization
    • Best practices and real-life use cases of cybersecurity innovation
Splunk Webinars and Videos
Splunk is the world’s first Data-to-Everything Platform. Now organizations no longer need to worry about where their data is coming from, and they are free to focus on the business outcomes that data can deliver. Innovators in IT, Security, IoT and business operations can now get a complete view of their business in real time, turn data into business outcomes, and embrace technologies that prepare them for a data-driven future.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Investigate Security Incidents Like a Boss
  • Live at: May 6 2020 5:00 pm
  • Presented by: Jae Lee, Director, Product Marketing, Splunk Inc.
  • From:
Your email has been sent.
or close