-
Read more: Using DPM and MITRE ATT&CK to Improve SOC EffectivenessUsing DPM and MITRE ATT&CK to Improve SOC Effectiveness
CardinalOps CEO on How Detection Posture Management Finds, Remediates Security Gaps SOCs are facing increased challenges due to the ever-growing complexity of infrastructure and technology, which expands the attack surface. CardinalOps CEO Michael Mumcuoglu said
-
Read more: Learn how to identify and fix a rule you don’t know is brokenLearn how to identify and fix a rule you don’t know is broken
Based on analyzing thousands of detections, our research team has compiled the top 10 ways that SIEM rules break (silently) over time.
-
Read more: Noisy rules give adversaries an easy path to exploit weaknesses in your defensesNoisy rules give adversaries an easy path to exploit weaknesses in your defenses
This research summary lists the top causes of noisy rules in your SIEM, followed by 5 best practices to help minimize noise.
-
Read more: Eliminate coverage gaps with automation and MITRE ATT&CKEliminate coverage gaps with automation and MITRE ATT&CK
Watch this 3-minute video to learn how CardinalOps continuously ensures you have the detections that matter most.
-
Read more: How to implement a threat-informed defense with MITRE ATT&CKHow to implement a threat-informed defense with MITRE ATT&CK
Download this ESG analyst report to learn about top ATT&CK use cases and how detection posture management can help.
-
Read more: Quantifying the ATT&CK Coverage Gap in Production SIEMsQuantifying the ATT&CK Coverage Gap in Production SIEMs
Benchmark your SIEM against the average state of detection coverage and rule health in real-world SIEMs.
-
Read more: Addressing the complexity challenge of multiple SIEMsAddressing the complexity challenge of multiple SIEMs
Learn how to ensure consistent detections and gain a federated view of MITRE ATT&CK coverage and rule health across multiple SIEM/XDR instances.
-
Read more: SANS Webinar with Anton Chuvakin on the Future of SIEMSANS Webinar with Anton Chuvakin on the Future of SIEM
Dr. Anton Chuvakin of Google Cloud and Yair Manor of CardinalOps discuss the future of SIEM – and how to overcome some of the problems that are still with us today.
-
Read more: SANS Webinar with Anton Chuvakin on Demystifying SIEM, EDR, XDR & MDRSANS Webinar with Anton Chuvakin on Demystifying SIEM, EDR, XDR & MDR
Dr. Anton Chuvakin of Google Cloud and Randy Watkins of Critical Start work to demystify the overlap between SIEM, EDR, XDR, MDR.
-
Read more: SOC Modernization: Where we go from here?SOC Modernization: Where we go from here?
Dr. Anton Chuvakin of Google Cloud & Phil Neray of CardinalOps, discuss the key forces shaping modern security operations and what holds so many organizations back from SOC modernization.
-
Read more: SOC, Meet Cloud. Cloud Meet SOC. What Changes – and What Stays the Same?SOC, Meet Cloud. Cloud Meet SOC. What Changes – and What Stays the Same?
Dr. Anton Chuvakin of Google Cloud and Phil Neray of CardinalOps will explore how cloud has changed everything, including how we do threat detection and incident response in the SOC.
-
Read more: [Black Hat Webinar] Insights From the 2023 State of Cloud Threat Detection and Response Report[Black Hat Webinar] Insights From the 2023 State of Cloud Threat Detection and Response Report
Dr. Anton Chuvakin of Google Cloud and Phil Neray of CardinalOps provide exclusive insights and unravel some of the mysteries surrounding how companies approach detection and response in the public cloud.
