Optimizing the SOC with Zero Trust & Insider Threat Intelligence

Presented by

James Young, Security Strategist, Splunk & Rajan Koo, Chief Customer Officer, DTEX Systems

About this talk

Employees are NOT the weakest link ~ their activity is simply invisible to most SOC teams. Why? Because firewalls, windows log files, IOCs from EDRs do not capture the meta-data that tells the story of – and verifies - how, when, why and where humans drive interactions with endpoints, servers, data and applications. Join James Young, Security Strategist with Splunk, and Rajan Koo, DTEX Chief Customer Success Officer, as they explore Zero-Trust, the Next-Gen SOC, and Internal Threat Intelligence. They’ll examine and detail: • Zero-Trust & SOC Transformation • The 12 elements of human cyber telemetry; • Indicators of Intent vs. IOCs and IOAs; • SOC enrichment use cases such as anomaly detection, peer group profiling automation, user logic correlation and behavioral risk scoring. Don’t miss this opportunity to learn how you can super-charge your SOC with internal threat intelligence.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (10)
Subscribers (1548)
DTEX Systems helps hundreds of organizations worldwide better understand their workforce, protect their data and make human-centric operational investments. Its Workforce Cyber Intelligence platform brings together UEBA, endpoint DLP, digital forensics, user activity monitoring and insider threat management in one scalable, cloud-native platform. Through its patented and privacy-compliant meta-data collection and analytics engine, the DTEX platform surfaces abnormal behavioral “indicators of intent” to mitigate risk of data and IP loss and make smarter business decisions quickly. The content of this channel is geared towards security teams and their leaders who are looking for the latest research and case studies that will help them tackle today's greatest security challenges.