White Papers & Videos
-
Read more: Learn how to identify and fix a rule you don’t know is brokenLearn how to identify and fix a rule you don’t know is broken
Based on analyzing thousands of detections, our research team has compiled the top 10 ways that SIEM rules break (silently) over time.
-
Read more: Noisy rules give adversaries an easy path to exploit weaknesses in your defensesNoisy rules give adversaries an easy path to exploit weaknesses in your defenses
This research summary lists the top causes of noisy rules in your SIEM, followed by 5 best practices to help minimize noise.
-
Read more: Eliminate coverage gaps with automation and MITRE ATT&CKEliminate coverage gaps with automation and MITRE ATT&CK
Watch this 3-minute video to learn how CardinalOps continuously ensures you have the detections that matter most.
-
Read more: How to implement a threat-informed defense with MITRE ATT&CKHow to implement a threat-informed defense with MITRE ATT&CK
Download this ESG analyst report to learn about top ATT&CK use cases and how detection posture management can help.
-
Read more: Quantifying the ATT&CK Coverage Gap in Production SIEMsQuantifying the ATT&CK Coverage Gap in Production SIEMs
Benchmark your SIEM against the average state of detection coverage and rule health in real-world SIEMs.
-
Read more: Addressing the complexity challenge of multiple SIEMsAddressing the complexity challenge of multiple SIEMs
Learn how to ensure consistent detections and gain a federated view of MITRE ATT&CK coverage and rule health across multiple SIEM/XDR instances.
-
Read more: Gartner® Hype Cycle for Security Operations, 2022Gartner® Hype Cycle for Security Operations, 2022
Read this complimentary report to learn about the growing importance of continuous threat exposure management (CTEM) for modern security operations centers.
-
Read more: Case Study: How a global firm expanded its ATT&CK coverage by 2x in less than 5 monthsCase Study: How a global firm expanded its ATT&CK coverage by 2x in less than 5 months
Learn how this SecOps team remediated missing, broken, and noisy detections in their SIEM and eliminated manual tasks.
-
Read more: ESG Report on SOC ModernizationESG Report on SOC Modernization
See why 52% of security pros say SecOps are more difficult today than two years ago — and why they’re looking for easier ways to develop better detections in the SOC.
-
Read more: CardinalOps Solution Brief: Operationalize MITRE ATT&CK in Your SOCCardinalOps Solution Brief: Operationalize MITRE ATT&CK in Your SOC
View the platform architecture and how it uses automation and ATT&CK to implement a threat-informed defense for your existing SIEM/XDR.