Google’s Chronicle Security Operations: Why Doesn’t My SIEM Do That?

  • Thursday, 10 Nov 2022 10:30AM EST (10 Nov 2022 15:30 UTC)
  • Speaker: Jake Williams

Organizations need modern threat detection that operates at scale, and Google’s cloud-native SIEM platform, Chronicle, delivers. In our tests, we observed multiple threat detections that most organizations haven’t even pondered including in their SIEM. SIEMs in general were supposed to enable three main goals:

  • Increase visibility
  • Enable detection of security events
  • Support the response of discovered security issues

While those goals haven’t changed, it’s undeniable that traditional SIEM solutions have failed to address them. Addressing these shortcomings are core to the Chronicle mission.

On this webcast, SANS Senior Instructor Jake Williams shares his experience with Chronicle, evaluating its features and usability from a practitioner perspective. Attend this webcast to learn how the product has a significant number of capabilities and was obviously designed to address shortcomings inherent in many SIEM platforms. Sign up now and find out why you’ll ask, “Why doesn’t my SIEM do that?” on more than one occasion. View the associated white paper here.