Aligning the Modern SIEM with MITRE ATT&CK

Presented by

Kyle Champlin, Principal Product Manager and Ryan Kovar (Splunk), John Wunder (MITRE), Matt Valites (Cisco Talos)

About this talk

Although MITRE ATT&CK is famous for making security analyst's lives easier, there is sometimes a learning curve to a company adopting the MITRE ATT&CK framework and implementing it into their SIEM. Join SIEM experts from the MITRE ATT&CK team, Cisco Talos Group, and Splunk to discuss the challenges (and solutions!) with using MITRE ATT&CK with a modern SIEM. Join us in this webinar to learn: - How security teams can derive value from using MITRE ATT&CK with a SIEM - Common issues organizations run into and guidance on how to improve security posture - How to supercharge your SIEM with MITRE ATT&CK and use it to your advantage - ATT&CKing your SIEM rules: how to map taxonomies and the difficulties you might face - Planning your defenses with Matrices

Related topics:

More from this channel

Upcoming talks (3)
On-demand talks (298)
Subscribers (37672)
Splunk is the world’s first Data-to-Everything Platform. Now organizations no longer need to worry about where their data is coming from, and they are free to focus on the business outcomes that data can deliver. Innovators in IT, Security, IoT and business operations can now get a complete view of their business in real time, turn data into business outcomes, and embrace technologies that prepare them for a data-driven future.