Optimizing AWS GuardDuty alerts for your environment

Logo
Presented by

Chris Vantine, Detection & Response Engineer - Expel

About this talk

If you’ve got GuardDuty set up in your AWS environment, then your security is already heading in the right direction. But knowing what to do with the alerts and how to make the most out of them isn’t always as clear. I’ll break down the classes of GuardDuty alerts and discuss different strategies to identify quality alerts using levers to tweak the volume and mapping of alerts based on your business needs.

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (13)
Subscribers (1151)
Expel is a managed detection and response (MDR) provider whose mission is to make great security as accessible as the internet. Our 24x7 SOC offers security monitoring and response for cloud, hybrid and on-premises environments. Our BrightTalk channel focuses on tips and tricks for detecting the latest threats using all your go-to security tech. Learn more about us at https://expel.io.