Name: Reducing SecOps Complexity with SIEM Replacement
Start: 2023-09-28T15:00:00Z
End: 2023-09-28T15:00:22.000Z
Location: BrightTALK
Rating: 5

Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. By scaling decades of frontline experience, Mandiant helps organizations to be confident in their readiness to defend against and respond to cyber threats. Mandiant is now part of Google Cloud.

From compliance to security operations, every organization must test and measure security effectiveness to help identify and mitigate cyber risks.  Although the ‘how’ and ‘when’ to test that effectiveness varies from org to org. 

Join Mandiant experts for a live discussion on the best practice methodologies and technologies your security team can use to accomplish this. During the session, our experts will cover:

- The difference between breach and attack simulation, red teaming and penetration testing
- When to choose between automation or partnering with a trusted third-party
- How to prioritize specific gaps in your security posture identified by proactive testing
- Mobilizing your security team to improve the overall security program

How to Effectively Test and Measure Your Cyber Defense Program

Every year we see the threat landscape in EMEA evolve in different ways. While defenders must navigate challenges, their path doesn’t have to be so uncertain. By studying the trends we see today in EMEA, we can paint a clearer picture of the battles we expect to be fighting in the coming year.

To help organizations navigate the cyber landscape in 2024, security expert Dr. Jamie Collier is presenting a deep-dive session to cover many of the EMEA-focused topics discussed in the latest Google Cloud Cybersecurity Forecast 2024 report, including:

- Tactics and tools to steal credentials
- SMS phishing, notably to access environments
- Increasing use of zero-days
- More targeting of edge and other devices  

Register for the webinar, and read the Google Cloud Cybersecurity Forecast 2024 report when it releases on 8th November.

Google Cloud Cybersecurity Forecast 2024 - EMEA

As cloud adoption continues to grow, so too does the number of cloud-native security threats.  However, cloud environments can present significant opportunities to improve security with the right tools and processes in place.

In our recent “State of Cloud Threat Detection and Response Survey", 71% of respondents said that “entire classes of threats are eliminated by migrating to the cloud” and 82% stated that “the cloud affords the ability to process more data, including on-prem data, which can improve detection across the board.” To reap these benefits, however, organizations need to understand that effectively securing the cloud involves more than “lifting and shifting” their existing security tools and processes. The cloud presents a different attack surface across various cloud services and data repositories, each with different attack tactics, potential misconfigurations and context.  

Join us to learn:
 - How TDIR in the cloud differs from traditional on-premises approaches
 - How an end-to-end workflow can work for you
 - What you should look for in a turnkey TDIR solution

Simplify End-to-End Threat Detection, Investigation and Response in the Cloud

Detecting, investigating, and responding to cyberthreats is the core function of the SOC, and the team never gets a break - attackers are carrying out more sophisticated attacks, the attack surface continues to expand, and talent shortages are the reality.

Join our upcoming webinar and demo to see how Chronicle Security Operations has cracked the code on speed and scale, automation, and detection/investigation/response processes.

We’ll explore how you can:
- Eliminate security blindspots with cloud-native infrastructure.
- Get to “aha” faster with sub-second search, insights, and streamlined processes.
- Democratize security operations by leveraging threat intelligence, out-of-the-box detections, and playbooks.

Modernize Your SOC for the Future

Join this session to learn how F5 Automated Defense can help you reduce the risk of your applications being attacked by malicious actors, improve your security posture by providing a comprehensive set of application security features, and increase the uptime of your applications by protecting them from threats and attacks that could compromise or take them offline.

F5 Automated Defense for application security

Recent advances in artificial intelligence (AI), particularly in large language models (LLMs), accelerate our industry’s ability to help the people responsible for keeping their organizations safe. In this session, we’ll show how Google Cloud Security AI Workbench, our industry-first platform powered by a specialized security LLM, enhances our security portfolio to address three top security challenges: threat overload, toilsome tools, and the talent gap.

Supercharge security with generative AI

Financial fraud, fake accounts, and fake campaigns represent some of the most pressing challenges for GoFundMe. reCAPTCHA Enterprise Fraud Prevention helps GoFundMe mitigate those challenges, improve donor trust, and drive enhanced security. In this session, learn how reCAPTCHA Enterprise helps GoFundMe protect their users from fraud, and how every dollar goes to someone in need.

GoFundMe: Securing donations from fraud with reCAPTCHA Enterprise

Creating compliant environments and addressing digital sovereignty concerns can present numerous challenges and even inhibit the use of innovative cloud services. In this session, we’ll describe how public and private sector customers can simplify compliance and meet digital sovereignty requirements in the cloud, applying controls like data location, encryption key management, and personnel restrictions in just a few clicks. You’ll also hear first-hand how we’re working with our partner S3NS to deliver sovereign cloud solutions in France.

Global compliance without compromise:Running regulated workloads on Google Cloud

As cloud environments get larger and more complex, it becomes difficult to identify the greatest security risks. What if you could quickly pinpoint where you’re the most exposed, and then quickly mitigate the risk of attack? Learn how our new attack path simulation engine uses advanced AI to help you visualize multistage attacks by tracing the steps an attacker may potentially take to exploit vulnerabilities, giving you the opportunity to remediate threats before they impact your cloud.

Pinpointing and mitigating cloud security risks

Software supply chain attacks are on the rise. In this session, we’ll explore the most common types of software supply chain attacks and provide an overview of the risks they pose to businesses. We’ll also discuss best practices for securing your software supply chain, such as implementing risk assessment and management processes, establishing strong security controls, and building a culture of supply chain security.

Secure from the core: Applying key security lessons to software supply chains

Threat detection, investigation, and response (TDIR) in the cloud requires different approaches, tools, and processes. Yet many organizations resort to lift-and-shift approaches rooted in legacy security operations, resulting in intensive efforts that fail to deliver the expected outcomes. Join this session to learn how Chronicle Security Operations provides superior, packaged TDIR for Google Cloud at a fraction of the effort.

Simpler cloud-native threat detection, investigation & response, from end to end

Recognizing the expanding threat landscape and the need for effective business enablement through threat-based exposure prioritization, Mandiant has developed a purpose-built solution: Mandiant Proactive Exposure Management. In this session, we’ll go over how this solution helps enterprises reliably and continuously reduce the most critical and exploitable exposures – before adversaries act on them. Security teams need to be able to effectively prioritize exposures that require immediate remediation – and understand what can wait.

Enabling business success by reducing cyber exposures

Join this Mandiant threat intelligence briefing to get insights into the latest tactics, techniques, and procedures (TTPs) and tools used by threat actors. This session will cover the evolving threat landscape and emerging threats, and provide actionable recommendations that organizations can use to be more proactive in bolstering their security posture and defending against cyberthreats.

Threat intelligence briefing with Mandiant

The Defender’s Advantage is the concept that organizations are defending against attacks in their own environment. This provides a fundamental advantage arising from the fact that they have control over the landscape where they will meet their adversaries. Organizations struggle to capitalize on this advantage. Join this session to learn about the six critical functions of cyber defense and how you can galvanize your defender’s advantage.

The Defender’s Advantage for cloud

The promise of digital transformation is being threatened by increasingly disruptive cyber risks and threats that every organization now faces head-on. In this keynote, leaders from Google and Mandiant will share our latest insight into the evolving threat landscape and how new innovations across our portfolio, including generative AI-driven capabilities, can help organizations better prevent threats, eliminate toil, and empower our collective talent to improve our security.

Google Cloud’s frontline intelligence and AI-driven cloud innovation

Did you know that the cloud presents better security improvement opportunities than on-prem? We had a sneaking suspicion this was the case! But don’t just take our word for it, see what security leaders and SecOps practitioners had to say about that topic and more.

What you need to know: 2023 State of Cloud Threat Detection and Response

For cybersecurity, artificial intelligence (AI) has the potential to benefit both the defenders and their adversaries. 

Threat actors are using AI to instantly generate sophisticated and evasive attacks, while security teams are now using AI-powered security tools to better protect against them. Today, Mandiant consultants are leveraging AI to help defenders reduce the amount of time needed to detect, respond, and remediate these attacks. 
 
Tune into this webinar to learn how Mandiant consultants use AI on the front lines to improve engagement efficiency and effectiveness—alongside their hands-on expertise and embedded threat intelligence.
 
Attendees will learn from Mandiant speakers Trisha Alexander, Ron Craft, and Jennifer Guzzetta how to use AI as a starting point to:
• Accelerate the investigation process of incident response events
• Streamline the generation of baseline threat detections
• Apply diverse query languages for navigation across multiple security platforms

AI & Cybersecurity: How Mandiant Consultants Accelerate Detection & Response

Legacy security information and event management (SIEM) tools were built in the pre-cloud era. They often lack the speed and scale required for modern-day threats, but also rely on complex and toilsome processes from hard to find security experts.

As cloud adoption continues to evolve your attack surface, so should the tools that are protecting your organization. 

Join us to learn:
 - How threat detection, investigation and response (TDIR) has outgrown legacy SIEM tools
 - What you should look for in modern SecOps tools
 - What a SIEM replacement strategy can look like

Reducing SecOps Complexity with SIEM Replacement

SIEM

Threat Detection

Incident Response

Security Operations

SecOps

Cloud Security

Security

Investigations

Threat Protection

Threat Prevention

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Reducing SecOps Complexity with SIEM Replacement

Presented by

About this talk

More from this channel