Improving Your SOC Efficiency with Advanced Security Analytics
- LANGUAGE: English DATE: Tuesday, January 24, 2017 TIME: 4:00pm CET, 10:00am EST, 7:00am PST
The overwhelming number of alerts generated by traditional security tools puts a huge strain even on the best security experts, leaving just minutes for them to decide whether an alert indicates a real cyber-attack or is merely a false positive; this analysis is still largely manual with very little automation and decision support available from the security tools. In fact, the biggest challenge the security industry is now facing is the lack of qualified experts to deal with the growing number of cyber-threats.
To address this massive skills gap, a new generation of security solutions has emerged recently, with vendors focusing on filtering out the statistical noise and bringing the amount of security alerts to a manageable number of alerts categorized by their severity, improving security analysts’ efficiency with intelligent automated controls and, last but not least, on enabling even non-technical persons to make informed decisions and initiate incident response as quickly as possible.
From statistical correlation methods to machine learning algorithms, from risk models to behavior profiling, from threat intelligence to cognitive technologies – there is a lot of exciting new developments going on in information security, which promise to dramatically improve the efficiency of your SOC.
In this KuppingerCole webinar, you will learn about:
- The ever-increasing sophistication of modern cyber-threats;
- The next-generation security solutions based on Big Data Analytics and other technologies;
- The new ways of making a security analyst’s job easier and more productive.
In the first part of the webinar, Alexei Balaganski, Lead Analyst at KuppingerCole, will talk about the current challenges IT security is facing and the emerging technologies aiming to solve them and to dramatically improve the efficiency of security analysts’ daily jobs.
In the second part, Csaba Krasznay, Product Manager at Balabit, will talk in detail about his company’s Contextual Security Intelligence approach, which combines traditional and next-generation security tools in a unified security platform directly integrated with an existing Security Operations Center.
Stefan-George-Ring 29 • 81929 München • Germany
Phone: +49 (0)89 9308 6477
Fax: +49 (0)89 9308 6467
Balabit’s Contextual Security Intelligence Suite protects organizations in real-time from threats posed by the misuse of high risk and privileged accounts. Solutions include reliable system and application Log Management with context enriched data ingestion, Privileged User Monitoring and User Behavior Analytics. Together they can identify unusual user activities and provide deep visibility into potential threats. Working in conjunction with existing control-based strategies Balabit enables a flexible and people-centric approach to improve security without adding additional barriers to business practices. Founded in 2000 Balabit has a proven track record including 23 Fortune 100 customers amongst over 1,000,000 corporate users worldwide.
A key challenge in every organization is making sure that the right tools are available, in the right place, at the right time, for the right people. The continual on and off boarding of large groups of employees, external workforces or partners creates increased pressure on administrative teams within an organization. An overall change towards diverse end-user devices, both corporate and privately owned, adds a new dimension of complexity, while compliance and security requirements challenge IT, CISOs and executive management.
European Identity & Cloud Conference 2017 is the place where identity management, cloud, and information security thought leaders and experts get together to discuss and shape the future of secure, privacy-aware agile, business- and innovation-driven IT. The EIC has become a kind of family gathering, the place where the global identity and cloud community meets every year. So take the opportunity to meet IT professionals and colleagues who are involved in this community, get advice from people who are fervent about IAM and Cloud Security.