Automate Threat Detection and Incident Response: SANS Review of RSA NetWitness

  • Wednesday, 16 May 2018 1:00PM EDT (16 May 2018 17:00 UTC)
  • Speakers: Ahmed Tantawy, Dave Shackleford, Maor Franco

According to the latest SANS Security Analytics survey, about 35% of respondents said that their greatest impediment is a skills gap in their IT environments, and approximately 26% said they do not understand the normal behavior of their environment. When you consider that your business will continue to grow and information will continue to proliferate, the need to have machines automate analysis of events from disparate sources becomes an imperative.

With this in mind, we reviewed RSA NetWitness, a solution that purports to bridge the human skills gap via machine learning and analytics.

In this webcast, SANS analysts Ahmed Tantawy and Dave Shackleford will discuss findings from Ahmed's review of RSA NetWitness, including:

  • Why an evolved SIEM approach is a superior way to handle today's sophisticated threats
  • How machine learning can automate detection and prevention
  • How RSA NetWitness performed in an entire attack lifecycle

Register now for this webcast and be among the first to receive the associated whitepaper written by Ahmed Tantawy.

View the associated whitepaper here.