Security professionals are pulling security data from all over their enterprises and beyond in an attempt to detect threats faster, according to the SANS 2015 Analytics and Intelligence Survey. In it, more than 50% of respondents derived security data from applications, firewalls/IDS and network devices, anti-malware systems, vulnerability management systems, endpoint protection systems, log managers, packet detection, SIEMs and host-based intrusion systems.
Despite these sources, organizations still lack the visibility they need to detect, scope and remediate threats in their enterprises. They need better analytics with machine learning to connect the dots and re-use internally gathered and third-party intelligence to prevent future attacks. This is the function of security analytics and intelligence.
In this webcast, attendees will learn about the following:
This is Part 1 of a two-part webcast. The Part 2 webcast, on December 8, 2016, will focus on the improvements in risk posture associated with security analytics as well as best practices for implementing analytics programs. Click here to register for the Part 2 webcast.
Be among the first to receive the associated whitepaper written by SANS Analyst Dave Shackleford.
View the associated whitepaper here.