SOC Alert Tuning and False Positive Reduction: Setting Yourself Up for Success

Channel:
United States SANS Cyber Defense
Subscribers:
23,600
Published on ● Video Link: https://www.youtube.com/watch?v=wZBXJGf8OuY


Duration: 1:00:51
7,577 views
215

Tired of false positive alerts in your SOC?

In this multi-part live stream, SANS authors Justin Henderson and John Hubbard will discuss the multitude of factors involved in ensuring you don’t drown in your alert queue. They’ll be breaking down how to reduce false positives into a methodical approach that can work for anyone.

In this live stream, Justin and John will discuss how to prepare for, and choose tools that will help give you the best possible results. Be sure to stay tuned for the follow on conversations on alert tuning, automation and more! Let’s get rid of those time-thieving bad alerts!

Links:
https://www.sans.org/profiles/john-hubbard
https://www.sans.org/profiles/justin-henderson
https://www.sans.org/cyber-defense

#cyber #cybersecurity #cyberdefense #SOC #SecOps #Security #SecurityOperations



Other Videos By SANS Cyber Defense


2022-05-09What skills do SEC586 students walk away with
2022-05-05Who should take SEC586 Blue Team Operations: Defensive PowerShell?
2022-05-01Why use PowerShell to automate?
2022-04-28Lifting the Fog: Investigating Cryptocurrency with OSINT
2022-04-27What problems does SEC586 solve for students?
2022-04-22Using Machine Learning to Reduce the Alert Fatigue
2022-04-04Join us for the Free SANS OSINT Summit 2022!
2022-03-18Setting Up and Managing Python Virtual Environments
2022-03-17Lifting the Fog: Exploring Maritime OSINT
2022-03-11Visualizing TensorFlow Models: Part II
2022-03-04SOC Alert Tuning and False Positive Reduction: Setting Yourself Up for Success
2022-03-03Defenders: What to do NOW if expecting nation state attackers
2022-02-18Visualizing TensorFlow Models: Part I
2022-02-04Visualizing TensorFlow Models: Part 1
2022-01-21Visualizing How CNNs See Images
2022-01-21PowerShell 2022: State of the Art / Hack / Infection
2022-01-14All-Around Defenders: New Year, New Start
2022-01-07Applying DS/ML to Forensics and Incident Response: An Interview with Jess Garcia
2021-12-13What do you need to know about the log4j (Log4Shell) vulnerability?
2021-11-22Get to Know SANS Instructor and SEC586 Course Author Josh Johnson
2021-11-22Bringing the Sexy Back to Blue Team, with Eric Conrad and Seth Misener


Tags:
sans institute
sans institute cyber defense
cyber defense
blue team
sans institute blue team
soc
security operations center
soc training
free soc training
siem
siem training
free siem training
cyber security
cyber security training
information security training
John hubbard
justin henderson
sans john hubbard
sans justin henderson
sec ops
sec ops training
soc alerts
false positive alerts
soc tools
soc alert tools
soc alert queue
alert queue