[Ep.3] Shining a Light: Helping SOCs Move Away From Working In The Dark

Logo
Presented by

Bassam Khan - VP of Product and Technical Marketing and Jon Oltsik, Senior Analyst at ESG

About this talk

There is no denying that there is a SOC visibility gap issue. Although SIEMs and EDRs have increased many SOC/IR team's effectiveness in identifying active infections, visibility gaps remain. It’s challenging for SOCs to gain complete network visibility due to constantly changing hybrid infrastructure, remote and flexible location working and the ever-increasing amount of encrypted traffic. The result is that analysts are left in the dark when trying to identify all adversary activity across the MITRE ATT&CK framework. In episode 3 of Gigamon’s ‘How SOCs are Working Alone, Distracted and In The Dark - And What To Do About It’ series, Bassam Khan, VP of Product and Technical Marketing at Gigamon and Jon Oltsik, Senior Analyst at ESG discuss how SOCs can shine a light on visibility gaps and arm SOC analysts with accurate and rapid information to address threats. We invite you to join us for this short 20-min episode to learn: - Why 69% of SOC analysts cite lack of visibility into network traffic as the top reason for SOC ineffectiveness - Real-world challenges, such as alerts without context and correlating data across multiple tools - How to effectively identify cyber-adversaries across any network, device or traffic - And more Don’t miss all three webinars in the series!

Related topics:

More from this channel

Upcoming talks (9)
On-demand talks (262)
Subscribers (17533)
Gigamon offers a deep observability pipeline that harnesses actionable network-level intelligence to amplify the power of observability tools. This powerful combination enables IT organizations to assure security and compliance governance, speed root-cause analysis of performance bottlenecks, and lower operational overhead associated with managing hybrid and multi-cloud IT infrastructures.