Closing the Skills Gap with Analytics and Machine Learning

  • Webcast Aired Tuesday, 31 Oct 2017 10:30AM EDT (31 Oct 2017 14:30 UTC)
  • Speakers: Ahmed Tantawy, Peter M. Tran

The shortage of infosec-related skills is real and acute across all industries and disciplines, according to multiple SANS surveys of IT/infosec administrators and managers. Respondents to those surveys also say they lack management support and note that disparate tools and groups don't talk to one another. Meanwhile, their secure perimeters have dissolved, users own their mobile endpoints, and critical systems such as healthcare platforms and industrial control systems (ICS) are connecting directly to the Internet.

Just as attackers are scaling and automating their malwareless attacks to be invisible to the defender, security professionals must also scale their security and intelligence to match-and hopefully get ahead of-modern-day (and future) attack techniques. Security analytics and machine learning provide the capability to scale without hiring numerous experts to detect, remediate and respond to seemingly disparate threats that are actually connected.

In this webcast, you will learn how to enhance security operations, detection and response without hiring a lot of extra manpower to do so. We will discuss:

  • Leveraging machine learning to detect new threats (so analysts can focus on the business)
  • Getting to a single pane connecting security and intelligence information
  • Ingesting and analyzing large volumes of security data with automation
  • Reducing false-positives and alerts
  • Turning on automated actions based on preset policies
  • The importance of search, pivot and drill-down for human analysts
  • Scaling intelligence and machine learning through the cloud '
  • Utilizing newly learned threat intelligence to close the gaps
  • Following through with workflow-enabled remediation

Register for this webcast and gain early access to the SANS associated whitepaper, developed by SANS analyst Ahmed Tantawy.

View the associated whitepaper here.