Name: SANS & Sumo Logic on Evolving Compliance Environements
Start: 2022-10-20T17:00:00Z
End: 2022-10-20T17:01:01.000Z
Location: BrightTALK

Sumo Logic empowers the people who power modern, digital business through its Continuous Intelligence Platform™. Practitioners and developers around the world rely on Sumo Logic to gain real-time analytics and insights from their cloud-native applications, helping them ensure application reliability, secure and protect against modern security threats, and gain insights into their cloud infrastructures. 

In this session, Sumo Logic and partner Legato will address the 4 must ask questions when considering an MDR:

-What’s the difference between MSSP’s & MDR’s?
-What makes up the MDR’s tech stack?
-What visibility do you have on your data?
-Cost effectiveness of an MDR?

geeks+gurus: Are you getting a response out of your MDR provider?

We are thrilled to have you join us for our customer conversation with Brandon Stringfield, Chief Information Security Officer at Steven F. Austin University. During this engaging and informative discussion, Mr. Stringfield will share insights and challenges his organization has encountered with regards to contextualizing data, compliance, and tool consolidation. We encourage you to participate and engage with our esteemed speaker to gain valuable knowledge and enhance your understanding of these critical topics.

geeks+gurus: Contextualizing Data in Higher Education

Today, detection engineers and blue teamers are focused on cloud threat detection. However, are we thinking about these threats holistically?
There are many pathways that threat actors utilize to gain access to cloud resources. Among these are endpoints that contain various cloud credential material.
This cloud credential material - in the form of various files, tokens and cookies is often overlooked, with little visibility and telemetry generated.

Cloud security: Does the endpoint still matter?

Security teams have struggled with getting value from their dozens, or even hundreds, of security tools. In fact, SIEM tools were built with the hopes of pulling together available data to derive context and meaning into the threat landscape at the time. But today, the industry requires a single solution, or platform, to address the myriad of challenges organizations are facing. Join our fireside chat and hear directly from Allie Mellen, Senior Analyst with Forrester Research, and Rhett Dillingham, Vice President of Security Product Management with Sumo Logic, about the future of security operations.

The inevitable (r)evolution of security operations

Join our geeks+gurus of Sumo Logic for an interactive conversation on the current state of cybersecurity, Demonstrating value is vital. In this 25-minute conversation, Bob Layton and Chas Clawson will Get Real about Cyber Resilience. 
With uncertainty around a potential recession and IT budgets flattening, security teams are learning how to do more with less. Cyber attacks are becoming more complex and destructive, however, more pressure is being put on security leaders to be more efficient with their spending and to make the case for these critical investments.
Cybersecurity and Managed Detection and Response (MDR) is a need but how do you tie increased cyber risk and business risk together? 

Cost-Effective: eSentire and Sumo Logic help you realize ROI on overall security spend, reduce Time to Contain of threat detection and response by 50% and reduce the need to find, train and retain security talent - protecting you 24/7 and saving you dollars
Elite Threat Hunters: Our team is your team .Rest easy knowing our team of Elite Threat Hunters provide 24/7 threat protection that is proactive, personalized, and cost effective.
Enable Proactive Security: Proactively prevent cyber attacks and business disruption by building threat detection models, proactive global threat hunts, curated original threat intelligence research, mapped to the MITRE ATT&CK framework
Absorb Complexity: By delivering a turnkey 24/7 solution and response across multiple attack vectors (log,network, endpoint, cloud, etc.), we absorb the complexity of people, process, and technology - allowing you to focus on your business

geeks+gurus: Get Real about Cyber Resilience

Reduce your cost but not your data ingest. Join our Sumo experts to learn more about our multi-use SaaS analytics platform powered by logs that helps DevOps and security teams troubleshoot applications – even when resources are limited.

geeks+gurus: Centralizing Log Management & Tool Consolidation

When your team has to go from requirements to production in a day — and do it safely and securely — DevSecOps is the path that gets you there. Join our LinkedIn Live to hear Sumo experts Colin Fallwell and Chas Clawson discuss the adoption of DevSecOps at every phase of the SDLC.

Geeks + Gurus - Adopting DevSecOps

Infor developed a decentralized governance model for managing the vast Sumo landscape. A landscape with thousands of users, tens of thousands of collectors and petabytes of log ingestion.

Democratizing machine data & logs

As part of their application modernization initiative, Ulta undertook a cloud migration to utilize Google’s GKE service. This required new sets of tools and telemetry to be collected in order to successfully manage the performance of their new applications and cloud infrastructure.

Come learn how Ulta Beauty approached this project, and discover:

How stability impacts business performance
Lessons learned during cloud migration
How to use all available telemetry to monitor Kubernetes
Managing costs while increasing volume of telemetry

ULTA Beauty gets a Cloud Makeover

In over a decade of experience in this field, we have noticed that in the incident management and response processes, security analysts spend most of their time in the enrichment phase instead of the decision-making one.

In this session, Enrico Benzoni, Manager - Marketing & Technical Alliances, Automation & Orchestration at Sumo Logic, and Dario Forte, VP and GM Automation & Orchestration at Sumo Logic, will discuss:

The challenges security analysts face in their day-to-day activities

Phases where automation plays a particularly significant role in easing the job for analysts

Automating beyond the cybersecurity use cases.

geeks+gurus: The future of orchestration and automation

Organizations today rely on key applications running on complex multi-cloud environments to transact business and work. A sound log management practice with insightful analytics not only helps ensure those applications are reliable and secure, but it can reduce the “cognitive load” put on engineers by empowering them with efficient troubleshooting in order to resolve and rescue MTTR.
In this session Manas Sharma, product manager, Mike Baldani, product marketing manager at Sumo Logic, and Rachel Stephens, Industry Analyst at RedMonk, will discuss:

-The challenges of managing huge volumes of siloed log data
-Best practices to get accurate log analytics for fast troubleshooting and issue resolution
-How Sumo Logic’s platform empowers engineers to keep applications reliable and secure with less toil.

Speakers:

Michael Baldani, Senior Product Marketing Manager for Observability
Manas Sharma, Principal Product Manager
Rachel Stephens, Senior Analyst with RedMonk

Better log analytics for less stressed engineers

MARA, the Modern Applications Reference Architecture is a complete Kubernetes-based application deployment that includes observability as a first-class citizen. 

MARA uses Pulumi as an Infrastructure as Code provider and can provision Kubernetes infrastructure to a cloud provider, or use an existing Kubernetes deployment. 

Join us as we discuss the advantages, challenges, and process of adding OpenTelemetry to MARA in a supportable and extensible way. By standardizing on OpenTelemetry for collection, MARA can support any observability platform that supports OpenTelemetry. 

Key Takeaways: 
Modern applications are more than just an application; supporting components are just as important.
Preferring Protocols over Products provides the most flexibility for vendors and operators.

The Journey to Open Telemetry with Sumo Logic & NGINX

Infor developed a decentralized governance model for managing the vast Sumo landscape. A landscape with thousands of users, tens of thousands of Collectors, petabytes of log ingestion.

By  democratizing log management, we implemented a decentralized governance model for our Sumo account. Consequently,, we succeeded in doubling our log ingestion year-over-year, while reducing our log ingestion cost by more than 50%.
We know exactly how much logs are generated by each of our products, of which there are more than 150, delivered as SaaS offerings. Each product team is provided with details on how much their product’s log behavior contributes to our Sumo bill. As we provide the tools to each team to manage their Sumo resources, each team can weigh the cost of logging against the benefits of having access to those logs through Sumo’s advanced features.

Democratizing Machine Data & Logs How Infor leverages Sumo Logic

In today’s world, customers expect top-notch digital experiences. Apps that are slow, or leak sensitive data, will alienate even the most ardent users.

This session will explore the underlying use cases for shifting security and observability left with two emerging practices, DevSecOps and Observability Driven Design.

Is it ODD to shift left -- Building elite DevSecOps performers

In this session, Senior Directors of Engineering at Sumo Logic Andrea Fumagalli and Michele Zambelli along with SANS Expert Dave Shackleford explain how to build and optimize the top three SOAR use cases, sharing invaluable tried-and-true technical details for solving your needs.

The fastest security response is not always the right one. However, minimizing response time by prioritizing security incidents, reducing false positives, and quickly investigating alerts is imperative for successful cyber defense. Nonetheless, making the best data-driven decision is a challenge for many organizations and MSSPs today.

SOAR does not replace humans but augments them, reducing analyst fatigue and taking full advantage of automation by orchestrating different tools into standard operating procedures (SOPs).

Top 3 SOAR Use Cases

visibility into the threat landscape, but also their own security posture. Join SANS Analyst, Jake Williams and Chas Clawson, CTO for security with Sumo Logic, as they talk about the importance of correlating security alerts across your entire cloud and on-prem environment, and enriching with threat intelligence and other feeds for context and improving threat investigations.

Modernizing your SecOps for tomorrow's threats

Join moderator Dana Torgersen and CSO/Sr. VP of IT George Gerchow from Sumo Logic, along with Patrick Hannah, CTO at Cloudhesive and Scott Friedman, Principal Technical Business Development Manager, AWS Higher Education Research, for an informative webinar on the growing need for a Zero Trust security model in higher education.

Learn how to:

Strengthen your security posture as your attack plane grows
Maximize the value of your security spend
Keep employees positively engaged

Zero Trust Fundamentals for Higher Education

How Reducing the Burden on SREs can Lead to a Healthier Team
Just about every organization today relies on key applications running on complex multi-cloud environments to transact business and enable users to work. While it is critical to ensure that those applications are reliable and secure, there’s also a need to reduce the burden or toil on engineers by filtering out the noise and false positives, so they can focus on the alerts that matter

In this session Mike Baldani, Product Marketing Manager at Sumo Logic, and Nathaniel Welch, Lead Cloud Platform Engineer at Time By Ping will discuss:
The challenges related to managing the toil placed on the engineering team
The possible impacts something like alert fatigue can have on a team
What can be done to help alleviate that burden

geeks+gurus: Reducing the SRE burden for improved mental health

How global organizations keep pace with changing regional compliance environments

Abstract:

Global cross-functional compliance teams can’t afford to miss key technical details when evaluating how to meet regional compliance requirements. While monitoring critical data, it’s imperative to detect potential misconfigurations that can impact attestations for PCI, HIPAA, PII, SOC, GDPR, and others. Security teams need to keep a close eye on a wide variety of on-premise and cloud data sources to accelerate compliance readiness and power through the audit season in order to ensure long-term compliance-focused improvements within their secure infrastructure. This talk will focus on a combination of scoping common compliance requirements as well as assessing the areas of affect depending on core business requirements.

SANS & Sumo Logic on Evolving Compliance Environements

Security Analytics

Compliance

Compliance Testing

Cloud Analytics

Cloud Applications

Cloud Architecture

HIPPA

ISO 27001

GDPR

IT Compliance

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

SANS & Sumo Logic on Evolving Compliance Environements

Presented by

About this talk

Sumo Logic