Send message to

Do you want to send the message without a subject?
Please note that your message can be maximum 1000 characters long
Special characters '<', '>' are not allowed in subject and message
reCaptcha is invalid.
reCaptcha failed because of a problem with the server.

Your message has been sent

You can find the message in your personal profile at "My messages".

An error occured

Please try again.

Make an appointment with

So that you can make an appointment, the calendar will open in a new tab on the personal profile of your contact person.

Create an onsite appointment with

So that you can make an onsite appointment, the appointment request will open in a new tab.

Header of Rapid7 Germany GmbH
Forums it-sa Expo Knowledge Forum D

Next Generation MDR

Why transparency of all data sources is important (no MDR without SIEM)

calendar_today Wed, 11.10.2023, 13:45 - 14:00

event_available On site

place Forum, Booth 7A-106

Action Video

south_east

Action description

south_east

Speaker

south_east

Themes

SIEM / Threat Analytics / SOC

Organizer

Event

This action is part of the event Forums it-sa Expo

Action Video

grafischer Background
close

This video is available to the it-sa 365 community. 
Please register or log in with your login data.

Action description

To achieve the highest possible detection rate in identifying potential threats, having an extensive data foundation for an MDR service is essential.

Relying solely on what are perceived to be the most crucial sources, whether it's just the endpoint or just the firewall, will result in numerous blind spots during detection and subsequent investigation.

Only when all sensors are strategically positioned and event sources provide the right data within the security context can transparent monitoring be guaranteed.

This responsibility falls on a central SIEM (Security Information and Event Management) system.

But what specific data is required? And for what purpose?

In this presentation, we will delve into the various data sources, how they can be leveraged for analysis, and which data must be incorporated.
... read more

Language: German

Questions and Answers: No

Speaker

show more
close

This content or feature is available to the it-sa 365 community. 
Please register or log in with your login data.