Name: Detection Technique Deep Dive
Start: 2022-12-12T13:00:00Z
End: 2022-12-12T13:00:22.000Z
Location: BrightTALK
Rating: 0

Splunk is helping to build a safer and more resilient digital world by equipping customers with the unified security and observability platform they need to keep their organization securely up and running — no matter what digital disruptions come their way.

To enhance SOC efficiency, analysts must be equipped with a streamlined workflow experience that boosts productivity. Ensuring security analysts have a SIEM solution that provides the foundation to unify detection, investigation, and response to threats will bolster their confidence and efficacy in managing security risks.

This webinar will dive into market research and trends in the SIEM market, with Splunk and guest speaker Forrester SecOps Analyst Allie Mellen. Learn from Splunk how its latest release of Splunk® Enterprise Security 8.0 is addressing the complex challenges within the SOC and how analysts can elevate security operations with the market-leading SIEM solution.

Join this webinar to learn about all of this and more including:

An overview of research and trends in today’s SIEM market.
A discussion about the future of SIEM - Where are we going? What’s critical for the SIEM of the future?
Plus, hear from Splunk how it is bringing a revolutionized, seamless workflow experience with Splunk® Enterprise Security 8.0 through native integration with Splunk SOAR.

The Future of SIEM: A Discussion featuring Allie Mellen - Revolutionizing the Analyst Experience

The Splunk SOAR product team is delivering a series of innovations to Splunk SOAR over the next few weeks across two key releases - Splunk SOAR 6.3.0 and 6.3.1. These capabilities constitute a significant evolution in how automation is consumed, shared and built across the SOC.

Join this webinar to learn about exciting new Splunk SOAR capabilities, including:

Unified security workflows across Splunk SOAR and Splunk Enterprise Security
Prompt-driven automation to increase SecOps collaboration and streamline response workflows
Guided automation that overlays real incident data atop logical sequencing for easier playbook building
Wayfinder - a new discovery and navigation experience for easier Splunk SOAR UI navigation

Splunk SOAR Evolved: A Unified TDIR Approach to Automation

As cyber threats evolve in complexity and grow in frequency, traditional methods are no longer sufficient to keep pace with these challenges. The need for an advanced, adaptive Security Operations Center (SOC) has never been more critical in order to build a proactive SOC capable of addressing the dynamic challenges of the modern threat landscape and keeping your organization digitally resilient.

Join this webinar to learn about:

Key transformational strategies needed to power the SOC of the future.
Splunk Security innovations to enhance visibility, accelerate response, and reduce the complexity typically associated with security operations.

Power the SOC of the Future with Splunk Security

As modern infrastructures continue to grow increasingly complex, keeping track of all of the important assets in your organization can be a daunting task. As your digital presence continues to expand across on-prem, cloud, and hybrid environments via numerous devices, users, and applications it’s more important than ever to ensure you have a dynamic and comprehensive view of all of your assets to reduce your risk exposure and maintain key compliance standards and best practices.

That’s where our newest solution, Splunk® Asset and Risk Intelligence comes in! Splunk® Asset and Risk Intelligence seamlessly leverages your existing Splunk data sources to create a comprehensive, accurate asset inventory. Join us as we explore how your organization can enhance your approach to asset discovery and compliance monitoring and redefine how you tackle security investigations and risk management.

In this webinar session, you will learn:
- How you can leverage your existing Splunk data to improve the way you tackle asset and compliance challenges.
- How you can develop better risk and compliance best practices with the dynamic and comprehensive view into your asset inventory provided by Splunk ARI.
- How Splunk ARI can help you improve your approach to security investigations and risk management.

Accelerate Your SecOps With Splunk Asset and Risk Intelligence

In 2024, security teams face new opportunities and obstacles, such as escalating geopolitical tensions, stricter compliance mandates, and the rise of generative AI — which will transform the industry in new and unexpected ways.

Join this webinar to learn how security teams will navigate the new frontier of generative AI – all while facing tightening compliance regulations and rising geopolitical tensions.

In this webinar session, you will learn:

How balancing security risk and reward of generative AI has gone mainstream. Meanwhile, security teams are racing to keep up with the pace of innovation and mitigate the new risks that accompany generative AI:

91% of security teams are using generative AI tools.
65% of respondents admit they lack education about generative AI.
77% say that data leakage will increase with generative AI usage.
And learn how rising geopolitical tensions are influencing the behavior of threat actors in 2024, with ransomware and cyber extortion as a central focus. The research also reveals how tightening compliance mandates remind security professionals that missteps can lead to consequences as serious as jail time, marking a transformational shift in the industry. Join to learn all this and more.

State of Security 2024: The Race to Harness AI

Cloud native applications are growing — and so are attack surfaces. To maintain a strong security posture, IT teams need to prioritize security vulnerabilities based on business impact. But how?

In this webinar, we’ll explore the challenges modern application teams face when securing cloud native apps — and how business risk observability can help solve them.

You'll learn:

- The biggest pain points when it comes to cloud security — and how to address them.
- How to correlate performance data, business context and security intelligence.
- Ways to use Cisco Secure Application to prioritize revenue-impacting security risks.

Register now to discover how you can protect what matters most.

Leverage business risk observability for cloud environments to protect what matters most

When SAP is at the heart of your organization, any slowdown carries significant consequences. But for the IT teams that manage SAP S/4HANA and multi-cloud environments, getting to the root cause of performance issues isn’t always easy.

In this webinar, we’ll dive into how AppDynamics Monitoring for SAP® Solutions delivers the end-to-end SAP visibility you need to conduct fast and effective root cause analysis. With transaction and code-level visibility, you’ll be able to keep your SAP ERP running flawlessly.

Learn how to:

- Gain end-to-end visibility across your entire SAP landscape.
- Enable proactive alerting using dynamic baselines to identify whether the problem lies within SAP.
- Diagnose the root cause of performance issues and assess the impact on user experience.
- Prioritize actions by using reporting to connect every layer of your infrastructure to critical operations.
- Identify issues before, during, and after migration, providing real-time critical business performance insights.

Optimize Your SAP ERP: Achieving performance excellence with Cisco AppDynamics

Now you see it. Observe, secure, and optimize your entire, unique enterprise technology stack with new Splunk innovations for Cisco AppDynamics that streamline workflows, improve productivity, and accelerate Mean Time to Detect (MTTD) and Mean Time to Remediation (MTTR).

In this webinar, you’ll learn about some of our new AI innovations and how you can benefit from the Splunk log analysis solutions for Cisco AppDynamics.

You’ll discover how you can:

- Simplify and accelerate troubleshooting with AppDynamics Log Observer Connect with Splunk, which enables observability and operational teams to share centralized logs and analyze them in context.
- Streamline workflows with our new unified experience across Cisco AppDynamics and Splunk observability solutions with single sign-on (SSO) and context-aware deep linking.
- Use Cisco AI Assistant for Cisco AppDynamics to gain highly relevant guidance and make intelligent decisions faster and more accurately.
- Learn how we are expanding Cisco AppDynamics APM services globally with SaaS hosted on Microsoft Azure.
- Leverage expanded solutions across on-prem, hybrid, and cloud environments.

Don't miss this webinar! Register now to secure your spot and elevate your digital business strategy with Full-Stack Observability with Cisco AppDynamics and Splunk!

Better Together: Introducing New Splunk Integrations and AI Innovations for Cisco AppDynamics

Need self-hosted observability? About half of all IT organizations manage on-prem IT environments, often due to government regulations for data residency, industry demands for sensitive data protection, and geographies without a local SaaS point-of-presence.

Learn about the latest innovations available now in Cisco AppDynamics On-Premises, including AI-powered anomaly detection and root cause analysis, application security with Cisco Secure Application, AppDynamics Performance Monitoring for SAP® Solutions, Flex Licensing, and a virtual appliance deployment option.

In this webinar you’ll learn how AppDynamics for self-hosted environments enables you to:

- Accelerate anomaly detection and speed root cause analysis with AI-Powered detection and remediation.
- Secure applications against vulnerabilities and attacks and prioritize responses based on likelihood of business impact.
- Build resiliency into your SAP landscape with application performance, business process monitoring, and SAP security insights.
- Simplify transitions to AppDynamics SaaS services with new Flex Licensing.

Cisco AppDynamics brings AI-powered intelligence to on-prem observability

Dynatrace claims to outpace Cisco in the observability space — but that’s simply not true. Without Full-Stack Observability, IT teams lack AI-driven insights needed to effectively prioritize remediation and security based on what matters most to your business. Cisco Full-Stack Observability (FSO) goes beyond reactive monitoring to deliver proactive and predictive visibility across the entire tech stack.

Sorry Dynatrace, you can’t do that.

In this webinar you’ll learn: 

- Key differentiators between Dynatrace and Cisco Full-Stack Observability. (Spoiler alert: it’s all about AI-driven insights, accelerating MTTR, reducing tool and vendor sprawl, and mitigating risk — all in one extensible platform.)
- What to look for in an observability solution to understand with confidence which one serves your needs now and in the future.
- Why unifying views of siloed telemetry from different domains without correlation to outcomes from Dynatrace is not “observability” and can’t safeguard your entire user journey.

If Dynatrace is your jam, no worries. Bring it along for the ride! Cisco FSO was engineered to play well with everyone — any platform, tool, or vendor.

Cisco FSO vs. Dynatrace: Monitoring is no longer enough to safeguard user experience

More than half of application performance issues originate in the database, yet most application teams have little or no visibility into database performance.

In this webinar, we’ll explore how modern DevOps teams can finally gain complete visibility into application performance — from the browser to the underlying database.

Learn how Cisco AppDynamics Database Visibility enables you to:

- Troubleshoot database performance issues in a live production environment.
- Proactively detect anomalies and diagnose the root cause of database-related performance issues.
- Continuously monitor and connect database and application performance.

Improving app performance with deep database visibility

As applications continue to grow in complexity, scale and their reliance on third-party services, troubleshooting the end-user experience has become harder than ever.

Fortunately, it just got easier with the new bi-directional integration between Cisco AppDynamics and ThousandEyes.

In this webinar, we’ll delve into how AppDynamics application performance monitoring (APM) coupled with ThousandEyes cloud and internet intelligence delivers end-to-end visibility across all your applications, networks and external dependencies.

You’ll learn how to:

- Break down AppOps and NetOps silos to enhance speed, visibility and business continuity.
- Combine AppDynamics and ThousandEyes to reduce MTTR and prioritize network remediation.
- Use the bi-directional integration to strengthen customer digital experience monitoring.

Register now to learn how you can deliver flawless digital experiences in an internet and hybrid cloud world.

Achieving end-to-end visibility with Cisco AppDynamics and ThousandEyes

SAP solutions are at the core of many business-critical applications. It's essential for technical and functional teams to monitor not only their SAP environments, but also have a comprehensive solution that provides visibility into all connected peripheral systems. Cisco's full-stack observability solutions — like AppDynamics Monitoring for SAP Solutions — reliably guide your strategic digital transformation journey.

Join us for tales from the field on AppDynamics for SAP. In this webinar, our AppDynamics engineers will share real-life stories of the challenges SAP customers are facing and their impact on business outcomes.

Learn how AppDynamics not only provides deep visibility into the SAP landscape, but also integrates with peripheral systems to deliver meaningful insights that protect your business.

AppDynamics for SAP: Best practices and success stories from the field

AppDynamics considers application performance management one of the building blocks to establishing a great end-to-end observability solution; for the end-users and the business.

What ensures the business gets the most of its technology investment?

In this webinar, we’ll discuss topics that have been part of our heritage. We’ll share our vision as application landscapes evolve, requiring technologists to adapt to ensure the business optimizes its technological investments most efficiently and profitably.

You’ll leave this webinar:

- Understanding of the scope for APM today and tomorrow.
- Knowing about, in more detail, some of AppDynamics’s core APM components.
- Familiarity with how OpenTelemetry fits in with APM.

Building Blocks to a Great Observability Solution

Join Splunk and Orange for a discussion about how AIOps and Observability is changing the game for IT. You can expect to hear all about observability best practices, customer references, and how you can best master IT complexity in your organisation.

Best Practices for Mastering IT Complexity: How AIOps & Observability is Changing the Game for IT

AI, today’s new technology frontier, is in a full frenzy free-for-all. How will you cut through all the hype? At Splunk, we believe it’s a matter of principles. Please join Hao Yang, Cory Minton, and Kirsty Paine to learn How AI Can Catalyze Digital Resilience: An Introduction to Splunk’s Philosophy to learn the latest on our vision and strategy as a company.

- Understand how Splunk is tackling AI today with leading organizations
- Discover how to align AI with enterprise mandates
- Learn how AI will shape the future of security and observability

How AI Can Catalyze Digital Resilience: An Introduction to Splunk’s Philosophy

The traditional approach of piling on narrowly-defined detections into a SIEM isn't working. Security analysts want tangible, actionable alerts with more context and higher fidelity. Splunk Enterprise Security's Risk-Based Alerting (RBA) intelligently aggregates suspicious behavior and delivers those actionable alerts, freeing up valuable time to proactively mature security operations.

In this webinar, you will learn how RBA can help you:

- Reduce low-fidelity, time-consuming alert volume by 50-90%.
- Provide more time for high-value activities in your security organization like threat hunting, adversary simulation and security content development.
- How RBA becomes the foundational approach for success with unique use cases, as well as the perfect dataset for machine learning.

Speaker:
Haylee Mills
Security Strategist
Splunk

Risk Based Alerting (RBA): The Future and Foundation of Next Generation Security

"Hindsight is always 20/20. Let's take a step back and talk through the fundamentals of information security, and pair them with ""things I wish I knew"" for starting with Splunk® Enterprise Security use cases.

In this session, learn how to get the best bang for the buck and rapidly increase your security posture with minimal effort. As you build your program, benefit from lessons learned, and common pitfalls will be discussed.

Join this webinar to learn more about:

- How to build a security program.
- Things to consider when building your program.
- Improving and protecting your security posture with Splunk Enterprise Security.

Speakers:

Marquis Montgomery
Senior Principal
Security Product Management
Splunk

Steven Chamales
Product Manager
Threat Intelligence
Splunk

The Beginner’s Guide to Security Monitoring for Enterprises

CISO Fireside Chat with .italo: SOC, Amore Mio!

MITRE ATT&CK Framework: Seeing Through the Eyes of Your Attacker

Detection Technique Deep Dive

Threat Detection Series

Having detection techniques at hand – which you can apply in systematic approaches across different environments – is a ninja skill detection engineers and threat hunters need to have.

In this session, Senior Threat Hunter Doug Brown will provide you with just that. Join Doug as he explores a range of concrete search techniques to measure a variety of behavioural changes, and demonstrates how to map those to MITRE ATT&CK techniques.

Attend this session to learn how to:

Map advanced statistics to MITRE ATT&CK techniques
Detect spikes with median absolute deviation and handle data with seasonality
Identify first-time events in new values seen in a field or combination of fields, including cardinality of distinct fields to measure behaviour change
Detect C2 beaconing through domain parking and lateral movement with RDP for first-time users by applying simple sequencing techniques
Plus, you’ll get bonus examples of highly complex sequencing approaches.

Detection

Security Operations

Security

Security Analytics

Threat Detection

Threat Analysis

Threat Hunting

Cyber Resilience

Cyber Risk Management

Threat Assessment

Get powerful e-commerce insights to grow your online transaction volume. Connect with thought leaders and colleagues to get the most up-to-date knowledge on the e-commerce strategies and techniques that drive growth.

E-commerce

The marketing community on BrightTALK is made up of thousands of engaged marketing professionals. Find relevant webinars and videos on marketing strategy, branding and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Marketing

Welcome to the mobile computing community on BrightTALK! With the consumerization of IT and the widespread adoption of mobile devices across the globe, mobile computing has become an important part of many people's lives in a culture of bring your own device (BYOD). With mobile devices doubling as work phones and more employees working from home, businesses need to provide secure access to data and work applications from anywhere at any time. Join this growing community and hear from industry thought leaders in webinars and videos as they share their insight on mobile computing research and trends.

Mobile Computing

Are you an IT service management professional interested in developing your knowledge and improving your job performance? Join the IT service management community to access the latest updates from industry experts. Learn and share insights related to IT service management (ITSM) including topics such as the service desk, service catalog, problem and incident management, ITIL v4 and more. Engage with industry experts on current best practices and participate in active discussions that address the needs and challenges of the ITSM community.

IT Service Management

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The application development community features top thought leadership focusing on optimal practices in software development, SDLC methodology, mobile app development and application development platforms and tools. Join top software engineers and coders as they cover emerging trends in everything from enterprise app development to developing for mobile platforms such as Android and iOS.

Application Development

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

Practicing business intelligence allows your company to transform raw data into sets of insights for targeted business growth. The business intelligence and analytics community on BrightTALK is made up of thousands of data scientists, database administrators, business analysts and other data professionals. Find relevant webinars and videos on business analytics, business intelligence, data analysis and more presented by recognized thought leaders. Join the conversation by participating in live webinars and round table discussions.

Business Intelligence and Analytics

Join thousands of engaged IT professionals in the application management community on BrightTALK. Interact with your peers in relevant webinars and videos on the latest trends and best practices for application lifecycle management, application performance management and application development.

Application Management

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful insights on how to best serve today's customers. If you want to create a successful customer experience today, you will have to appeal to the need for “alone together” time. Millennials, Gen X, Boomers or Silent Generation all look for shared but individual experiences.

Customer Experience

The sales community on BrightTALK brings together thousands of engaged sales professionals. Learn about careers in IT sales and marketing, sales techniques and selling strategies. Join the discussion by participating in on-demand and live sales webinars and summits with leaders in the sales industry.

Sales

Thousands of healthcare IT professionals compose the health IT community on BrightTALK. Learn alongside them with relevant webinars on healthcare IT compliance, big data in healthcare and IT solutions for healthcare organizations. Join the conversation by asking questions and engaging with other participants during live webinars and organized discussions.

Detection Technique Deep Dive

Presented by

About this talk

More from this channel