Security Investigation: Restoring Calm from Chaos

Logo
Presented by

Jae Lee, Director, Product Marketing, Splunk, Inc.

About this talk

Security teams are underfunded, understaffed and overwhelmed by constantly putting out fires. They struggle to deal with threats and attacks, while having to answer hard questions from management. Everyone is demanding detailed, accurate answers about cyberthreats and risk and compliance – and they all need answers NOW. So, how useful is it to know that you’re not alone, since others are in the same boat? The answer is “not useful at all.” What IS useful, is knowing how to work smarter and get answers faster. Join us in this one-hour technical deep dive and demo to learn: •How to analyze events from three common data sources to look for malicious activity •How to get more efficient at discovery, triage and the investigation of potential security incidents •How to leverage automation methods to accelerate investigations and get answers faster This webinar will provide demo examples of how to ask questions of your machine data to get security insights. For example, we will explore whether login behavior looks suspicious the root cause of how an attacker entered your network. We’ll show how you can get to investigative findings quickly and make use of those answers just as quickly. This webinar aims to help security teams learn how to stay focused on solving security problems faster so they can get ahead of it all.

Related topics:

More from this channel

Upcoming talks (8)
On-demand talks (285)
Subscribers (36590)
Splunk is the world’s first Data-to-Everything Platform. Now organizations no longer need to worry about where their data is coming from, and they are free to focus on the business outcomes that data can deliver. Innovators in IT, Security, IoT and business operations can now get a complete view of their business in real time, turn data into business outcomes, and embrace technologies that prepare them for a data-driven future.