Burning Down the Haystack - SANS Security Operations Summit 2018

Channel:
United States SANS Institute
Subscribers:
64,000
Published on ● Video Link: https://www.youtube.com/watch?v=847-flt0uFs


Duration: 27:30
287 views
3

SANS Summit schedule: http://www.sans.org/u/DuS

Presenter: Tim Frazier, Splunk

How do you find the needle in the haystack? Burn all the hay! In this talk, Tim aims to show how automation can help “burn the hay” and deal with the overwhelming volume of alerts that IR analysts deal with on a daily basis. Tim will give examples of Security Automation & Orchestration (SAO) speeding up the alert triage process through enrichment from internal and external tools, proceeding to a human decision in the loop and then going directly to take response action through integration with existing security tools such as firewalls, proxies, and endpoint solutions.



Other Videos By SANS Institute


2019-04-02Top 5 Things to Know About Azure Active Directory Logs - SANS Tactical Detection Summit
2019-03-22SANS Security Operations Summit & Training 2019: Sneak Peek
2019-03-12Top 10 Writing Mistakes in Cybersecurity and How You Can Avoid Them
2019-03-04The Hitchhiker’s Guide to Evidence Sources - SANS Webcast
2019-02-21Purple Teaming Explained
2019-02-20ICS Security Summit 2019: What to Expect
2019-02-16Network Visualizations: Understand what's happening faster and easier than ever! - SANS Webcast
2019-02-11Unconventional Logging and Detection - SANS Tactical Detection Summit 2018
2019-02-11SANS Blue Team Summit & Training 2019
2019-02-10The Changing Landscape of Offense - SANS Pen Test HackFest 2018
2019-02-07Burning Down the Haystack - SANS Security Operations Summit 2018
2019-02-06Measure Yo Bad Self - SANS Security Operations Summit 2108
2019-02-05Forgotten But Not Gone: Gathering NTFS Artifacts of Deletion - SANS Tactical Detection Summit 2018
2019-02-04Applied Data Science and Machine Learning for Cybersecurity - SANS Tactical Detection Summit 2018
2019-02-01Defeating Attackers with Preventative Security – SANS Institute
2019-01-31Build it Once, Build it Right: Architecting for Detection - SANS Tactical Detection Summit 2018
2019-01-31Ship of Fools: Shoring Up Kubernetes Security - SANS Secure DevOps Summit 2018
2019-01-30Lessons Learned from Illumina's SecDevOps Transition - SANS Secure DevOps Summit 2018
2019-01-30Everything New is Old Again - SANS Secure DevOps Summit 2018
2019-01-30The Top Ten Reasons It’s GREAT to Be a Pen Tester - SANS Pen Test HackFest Summit 2018
2019-01-30A Year Of Gaining Superpowers - SANS Pen Test HackFest Summit 2018


Tags:
sans institute
information security
cyber security
cybersecurity
information security training
cybersecurity training
cyber security training
security operations
Security Operations Summit
SANS Summits