Automating Cyber Rapid Response & Threat Hunting with Autonomous Threat Sweeper

Presented by

Oliver Rochford, Sr Director, Security Evangelist, Aditya Sundararam, Sr Director, Global Threat Detection & Threat Hunting

About this talk

Sophisticated supply chain attacks like Sunburst can unfold over weeks, months, or even years before they are discovered and disclosed. With attackers already ahead before the race has even started, enterprises must respond rapidly to catch up and must quickly be able to gain insight into: - Are we compromised? - What is the impact? - Do we need to notify partners, regulators? Rapidly responding means that defenders need tools and capabilities to perform detection retrospectively, at speed and scale – and they must be able to do this across data from various devices and applications, often residing in diverse data silos, including SIEM’s and Data lakes. Threat hunters also typically have limited bandwidth and must rely on often cumbersome and manual tools and processes, slowing down response and restricting how much time they can spend analyzing any given threat. Join Oliver Rochford, Senior Director, Security Evangelist, and Aditya Sundararam, Senior Director, Global Threat Detection Engineering and Threat Hunting, to hear about our recently launched Autonomous Threat Sweeper. Learn how we have automated threat hunting and rapid cyber response, and how you can benefit from: · Automated cyber rapid response · Proactive and autonomous early detection of new and emerging threats. · Retroactive threat hunting across large volumes of logs and extended historical time frames. · Providing air-cover for security operations, for example, overnights and weekends, against the most critical newly disclosed threats.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (68)
Subscribers (12738)
Securonix Next-Gen SIEM and XDR deliver threat detection and response powered by flexible, cloud-native advanced analytics. Follow this channel to learn from our security experts. They will discuss threat trends, detection techniques, and SecOps topics such as cloud security, insider threat, NTA, SIEM, UEBA, XDR, and SOAR.