Name: Is This Thing On? How To Test Your SIEM
Start: 2021-12-14T18:00:00Z
End: 2021-12-14T18:00:53.000Z
Location: BrightTALK
Rating: 4

Blumira’s automated detection and response platform enables faster resolution of threats to help stop attacks and prevent breaches. Try it free today: blumira.com/trial

In an era where 71% of hackers target small businesses and merchants with fewer than 100 employees*, the importance of robust cybersecurity measures cannot be overstated. This webinar provides a comprehensive guide to PCI DSS compliance, delving into key requirements such as data retention, centralized system logging, daily log review, anomaly detection, and endpoint response.

-Gain insights into tailored strategies for achieving PCI compliance, specifically designed for organizations with limited resources and IT personnel.
-Benefit from expert guidance on implementing security best practices, maintaining compliance, and optimizing your organization's cybersecurity posture.
-Blumira logging, monitoring, and anomaly detection help satisfy elements of PCI
-How the change from PCI DSS 3.2.1 to 4.0 impacts your organization


Discover how the Blumira platform facilitates anomaly detection and rapid response, enabling organizations to contain threats in near real-time and mitigate potential risks effectively. Explore how Blumira cloud-based SIEM platform simplifies PCI DSS compliance, offering real-time monitoring, centralized logging, and automated threat detection and response.
 
Whether you're navigating the complexities of PCI compliance for the first time or seeking to enhance your existing security measures, this session provides invaluable insights and actionable strategies.
 
Gain expert insights, practical strategies, and actionable guidance on achieving PCI DSS compliance. Equip your organization with the knowledge and tools needed to safeguard against cyber threats, protect sensitive data, and maintain compliance in today's evolving cybersecurity landscape.
 
*According to the PCI Security Standards Council

Navigating PCI Compliance: Expert Insights for Small to Mid-sized Enterprises

Legacy Windows servers and their respective OSes are a necessary evil for many IT admins.

Whether you don’t have the time, resources or the ability to upgrade, legacy systems can easily fly under the radar until an unpatched machine becomes a foothold for cyberattackers. Ransomware attacks like WannaCry and NotPetya took advantage of vulnerabilities of legacy OSes, and there will likely be more. 

In this panel discussion, we’ll swap war stories and lessons learned about securing legacy systems. Join Lime Networks’ CTO Kelvin Tegelaar and blogger at TheCyberDrain.com, along with Blumira’s Amanda Berlin, Lead Incident Detection Engineer and Jeremy Young, Director of Partner Strategy, as they discuss how to prevent your legacy Microsoft systems from becoming targets. 

You'll learn:
- Best practices that make it easier to secure legacy systems 
- How to achieve robust logging through free resources like Sysmon and Windows Baseline Configs
- The challenges of security when every user is an admin 
- A comparison of then and now, discussing the most commonly exploited pieces of Windows OS (Spoiler Alert? Things haven’t changed much)

The Elephant In The Room:  Securing Your End-Of-Life Microsoft Infrastructure

Traditional SIEMs are known for requiring long, arduous deployments, but in reality, IT and security teams can set up a modern SIEM solution in as little as one hour.

Join Blumira’s Patrick Garrity, VP of Ops, David Begley, Technical Account Manager, and Emily Eubanks, Security Operations Analyst, as they walk you through the process of deploying your SIEM so you can instantly start receiving valuable security alerts.

In this roundtable, they’ll discuss how to:
- Configure log flows using Windows NXLog, Logmira and Flowmira
- Quickly integrate your cloud SIEM with your existing tech stack
- Leverage valuable detections to get ROI from your SIEM deployment on day one

30-Minute How To: Deploy a Cloud SIEM in 1 Hour

Ransomware attackers are increasingly targeting small and medium-sized (SMB) businesses as they struggle to defend against outbreaks due to lack of resources, no security operations center (SOC) or security expertise, and little time for dedicated investigation and response.

Join Cerium Networks’ Scott Nelson, Director of Cybersecurity, along with Blumira’s CTO and Co-Founder Matthew Warner, and Content Marketing Manager, Erica Mixon, as they go through 5 practical tips that small IT and security teams can use to defend themselves against ransomware, using the resources they have today.

The financial impact of a ransomware attack on an SMB can be debilitating. IT and security teams will learn how to detect and respond to suspicious activity quickly enough to prevent an infection.

In this roundtable, our experts will discuss:
- Challenges that small IT and security teams face when defending against ransomware
- Practical solutions to those challenges that don’t require extra budget or expertise
- How organizations can respond early enough to prevent a ransomware infection from inflicting real damage
- How Blumira helps small teams easily monitor, identify and get alerted about attacker behavior

5 Ways SMBs Can Defend Against Ransomware

How can you make sure that your endpoint detection and response tool will alert you about security threats when they inevitably appear in your environment? Not all EDRs are created equal. Sadly, some are far behind the curve when it comes to providing actionable alerts, detection depth, or simply prevention effectiveness. Testing an EDR tool can ensure that the tool delivers on the vendor’s promise and detects the attacker behaviors that it should.   Join Joff Thyer, Penetration Tester, Developer and Researcher at Black Hills Information Security, along with Blumira’s Brian Laskowski, Incident Detection Engineer, as they go through ways to test your EDR.   They’ll cover: - Configuration requirements to get started with EDR emulation - How to determine whether an EDR will pick up on behaviors like process activity, network connections and registry content rather than just raw file inspection - Free tools like Sysmon and Windows Defender that can assist in the testing process - And more

Is This Thing On? How To Test Your EDR

How can you make sure that your SIEM will alert you about security threats when they inevitably appear in your environment?    A SIEM’s true value lies in its detections; by aggregating, analyzing and correlating your logs, you can identify potential security issues. When these detections fail, you may not identify a compromise early enough to prevent a major security event like a ransomware attack or data breach.  Join Andrew AJ King, CISO of BreachQuest, along with Blumira’s Amanda Berlin, Sr. Incident Detection Engineer and Erica Mixon, Content Marketing Manager, as they go through ways to test your SIEM.   They’ll cover: - The process of testing for detections, such as users with non-expiring passwords - The benefits of using red team or pentest to actively test detections - Best practices and tools to make SIEM testing easier

Is This Thing On? How To Test Your SIEM

Cyber Security

Cyber Attacks

Cloud Security

Information Security

SIEM

IT Security

Threat Detection

Cyber Incident Response

Cyber Threats

Threat Defence

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Is This Thing On? How To Test Your SIEM

Presented by

About this talk

More from this channel