You will earn 6 CPE credits for attending this virtual event.
Forum Format: Virtual
Event Overview
Security Orchestration, Automation and Response (SOAR) tooling is intended to increase efficiency and consistency. These tools also promise to diminish the cost of operating a Security Operations Center (SOC) for most organizations. If used properly, these tools can do all of these things. The challenge is that the tools are frequently bought to avoid the one thing that most organizations don't seem to be able to do on their own: figuring out the sequence of actions that need to be automated and bringing together the mass of data from disparate tools.
Investing in a SOAR platform is strategic and oftentimes a financially beneficial decision. SOAR systems can help define, prioritize, and standardize responses to cyber incidents. This process occurs when an organization's security team uses the platform to gain insight on an attacker's tactics, techniques, and procedures (TTPs) and known indicators of compromise (IOC).
Join this SANS lead forum as we explore various SOAR topics through invited speakers while showcasing current capabilities available today. Presentations will focus on technical case-studies and thought leadership using specific examples relevant to the industry.
Relevant topics:
- Managing Security Operations
- Handling Security Alerts & Alert Fatigue
- Accelerate Threat Hunting
- Case Management and Collaboration
- Security Information and Event Management (SIEM)
- Data Tracking & Customization