SIEMs are not a tool we can afford to under-utilize, yet many organizations still have sub-par, under performing deployments that analysts don't enjoy using. While many of us do a decent job of the basics, we still often miss both low-hanging fruit and many simple to implement but non-traditional sources we could harness to greatly increase our detection capabilities.
This webcast will cover some of the most important data sources and use cases that are often missed, as well some commonly overlooked data sources that can add tremendous value. The goal will be to help illuminate gaps you may have, give you some new clever detection ideas, and point to the tools that will help you fix the problems.