Watch Now
Who Should Attend: Splunk Administrators, Security Analysts, SOC Manager
Historically, Security Operations Centers have been noisy places. Teams have worked endlessly to craft the ‘perfect’ correlation search, to no avail. As the volume of security alerts continued to grow, it has put a disproportionate amount of the workload on analysts, as their primary job function became triage related activities. Tune in to learn how Enterprise Security with native Risk-Based Alerting functionality addresses this issue. In a series of clicks, ES users can map against their preferred cybersecurity framework (e.g. MITRE ATT&CK), start aligning analytics to quantify their cybersecurity coverage, and watch the number of alerts plummet.
Learn how to:
-
Improve true positive rates
-
Detect complex threats faster
-
Streamline investigations with richer context
Speakers:
Jim Apger
Staff Security Strategist, Splunk
Staff Security Strategist, Splunk
Jim is a 20-year veteran of the tech industry. He began his data-centric career in the manufacturing environment (SCADA) developing solutions to interconnect heterogeneous systems, robotics, controls, analytics and supervisory systems. His digital hardware and software background paved a path for him to spend nearly ten years as an innovator in the network intrusion prevention space. Prior to joining Splunk as a Security Architect in 2014, Jim made many key contributions in the fields of web fraud detection, anti-money laundering, security information/event management (SIEM), Security Operations, and cyberthreat intelligence. Jim earned his bachelor's degree in Electrical Engineering from The Ohio State University which marked the beginning of his data-centric career. He is currently in a global role with Splunk as a Staff Security Strategist focused on evolving security operations and building out his Risk Based Alerting framework. You can find Jim on LinkedIn
https://www.linkedin.com/in/apger/
Jairo Camacho
Security Product Marketing Specialist, Splunk
Security Product Marketing Specialist, Splunk
Jairo is a Product Marketer in the Security Markets Group at Splunk. He focuses on the Splunk User and Entity Behavior Analytics segment of the security market. You can find Jairo on LinkedIn https://www.linkedin.com/in/jaicamacho/