Jay Lillie, CardinalOps VP of Customer Success, and Dr. Anton Chuvakin from the Google Office of the CISO engage in a fascinating conversation on the Do’s and Dont’s of SIEM at various stages of maturity.
Their discussion covers the importance of SIEM differentiation from other tools, the appearance of detection “noise” and how to handle it, what to do when you discover coverage gaps, and how best to approach using the MITRE ATT&CK framework, among other topics that are as important as they are interesting!
|