Learn real-world skills from real-world cyber security practitioners. View upcoming Live Online Events.

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Detection, Meet Response: Why Automated Enrichment is Key to SOC Effectiveness

  • Tuesday, April 14, 2020 at 7:30 PM EST (2020-04-14 23:30:00 UTC)
  • Jason Mical

Sponsor

  • Devo Technology Inc.

You can now attend the webcast using your mobile device!

  

Overview

While requirements for the modern SOC are evolving, many security analysts are burning out and turning over, driven out by increased workloads, information overload, and a lack of visibility into network and IT infrastructure. Research conducted by the Ponemon Institute found that workflow automation and improved technology were key to providing better support for analysts and reducing burnout.

In this session, youll learn how automatic enrichment can be applied to the analyst workflow, through detection, investigation, and response, and why it is critical to increasing SOC effectiveness and unleashing analyst creativity.R

REGISTER here for this webcast.

Speaker Bio

Jason Mical

Jason Mical is probably best known as the “Father of the SilentRunner® technology”, the industry’s first full packet capture, network forensics solution of its kind, developed by the NSA and Raytheon. He is also the co-creator of the Resolution1/Fidelis Endpoint Platform, the industry’s first EDR solution. He assists clients in such areas as electronic intercepts, intrusion analysis, malware eradication, forensic investigations, incident response, security standards and guidelines. Jason also offers his expertise and consulting services to clients and other audiences on issues of both cyber and physical security investigations.

Jason has more than 30 years of experience in telecommunications fraud prevention, physical security management, and cybersecurity investigations. During his career, he has developed and implemented

overall cybersecurity, physical security, forensic investigation and fraud control programs for several global organizations and managed lawful interception operations to support federal agencies. He has developed security and fraud awareness training seminars for employees in private industry, as well as federal, state and local law enforcement.

Jason has been a member of the FBI Infraguard, United States Secret Service Electronic Crimes Task Force, ISSA, HTCIA, ASIS, ANSIR, and CTIA Fraud Task Forces.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.