Name: Staying on Top of Malicious Emails with Threat Intelligence and SOAR
Start: 2022-02-09T16:00:00Z
End: 2022-02-09T16:00:57.000Z
Location: BrightTALK
Rating: 0

Swimlane delivers automation for the entire security organization. Swimlane Turbine is the AI-enhanced low-code security automation platform that unifies security teams, tools, and telemetry in-and-beyond the SOC into a single system of record to reduce process and data fatigue while quantifying business value and ensuring overall security effectiveness.

Learn more: swimlane.com

As the cost of data breaches continues to climb, finding effective ways to mitigate financial damage is more critical than ever. In this webinar, we'll demonstrate proven tactics for automating incident response to help you mitigate the damage and cost of a data breach. 

We’ll explore key strategies, tools, and frameworks that security professionals rely on to defend against the relentless onslaught of cyber threats. Whether you're an analyst, SOC manager, or CISO, you'll gain valuable insights to strengthen your defenses and be better prepared when chaos strikes.

Walk away with a clear understanding of essential incident response strategies and tools, including:
-Popular low-code automation playbooks for incident response
-How AI-enhanced automation helps map alerts and incidents to incident response frameworks 
-Real-world examples of how case management helps improve incident response

Proven Tactics for Incident Response: A Hands-On Demo

Join our very own security automation evangelist, Jay Spann, as he delves into the depths of Swimlane’s AI enabled low-code security automation platform. Discover the nuances of our automation platform and explore the key differentiators that set us apart from the competition. Tune in to gain valuable insights and stay ahead in the realm of security automation.

Discover the Nuances of Swimlane’s AI Enabled Low-code Automation Platform

Swimlane Turbine’s pre-built SIEM alert triage solution combines low-code playbooks, threat intelligence insights and case management applications into a complete end-to-end solution, enabling you to automate SIEM alert triage. Watch this demo to see how it works.

How To Automate SIEM Alert Triage

The latest 2024 SANS SOC Survey highlights that SOC teams grapple with significant challenges, including lack of automation, staffing constraints, and limited operational visibility, even as their responsibilities expand.

Learn key findings from the survey and tips on how to build an automated SOC from Swimlane’s CISO, all in just 30 minutes! Register now for the Maximize SOC Potential: Lessons from the 2024 SANS SOC Survey webinar on Thursday, August 22 at 2 pm ET. 

You’ll learn:
-The pressing need for automation in security operations
-How staffing challenges and limited enterprise visibility hinder SOC effectiveness
-Tips on how to improve SOC automation & orchestration

Maximize SOC Potential: Lessons from the 2024 SANS SOC Survey

In an era where cyber threats are becoming more complex, regulatory scrutiny is increasing, and cybersecurity professionals are in short supply, companies must strategize to bridge the talent gap effectively.

Register now for our webinar on August 8 at 1 pm ET:  Alleviate Your Security Talent and Staffing Challenges where we’ll focus on the challenges that organizations face in hiring and retaining cybersecurity talent, as well as solutions to overcome these obstacles.

During the comprehensive panel, cybersecurity experts from Recorded Future, Swimlane and Phoenix Cyber, will explore:
-Strategies to do more with less: Using technology as your ally to maximize efficiency and mitigate staffing shortages within your cybersecurity team.
-Hiring & retention mastery: Unpacking the secrets to attracting and retaining top-tier security talent in a competitive market.
-Preventing burnout: Manage the overload of notifications and alerts effectively.

This practical session will also spotlight real-life examples shared by fellow peers, offering invaluable insights into successful strategies employed across the industry.

Register now to secure your spot and fortify your company's defense against tomorrow's threats.

Alleviate Your Security Talent and Staffing Challenges

Advanced phishing attacks have increased by 341% in 2024. This sharp rise burdens security teams with more alerts, false positives, and urgent tasks. Yet, it's crucial for SecOps to remain alert due to the financial risks businesses face from phishing.   

Join us for a 30-minute webinar on July 18 at 12 pm ET to learn essential SOC best practices to combat phishing effectively and how automation can empower SOC analysts to handle the increasing volume of threats. 

Key topics discussed will include:
-The rise of phishing attacks and their business impact
-Tips and tricks for SOC best practices to address phishing
-A demo of Swimlane’s phishing triage pre-configured solution

Staying Vigilant: Tackling Phishing with Automation

With the ongoing merging of IT and OT  networks, cybersecurity analysts must identify both threats and effectively monitor, detect, and respond across both environments to minimize recovery time.

Watch this webinar to hear experts from ServiceNow, Swimlane and Dragos discuss filling the OT visibility gap, including how to improve OT network monitoring, threat detection and vulnerability management through automation, workflows, and incident response.

Filling the Operational Technology (OT) Visibility Gap

The cybersecurity regulatory landscape is transforming, driven by the need to safeguard sensitive data and critical systems. Regulations like the SEC's cybersecurity disclosure rules and the EU’s Cyber Resilience Act, alongside the rapid integration of AI, pose challenges for organizations globally. 

Join us for a webinar where we dive into new research with cybersecurity leaders on how the shifting regulatory environment is influencing security practices and compliance strategies, gaps in current practices, and how organizations can bridge these divides.

During the webinar on Tuesday, June 18 at 12 pm ET, security and compliance experts from Swimlane will discuss the findings from the research:
-Regulations fuel strategy shifts: 93% of organizations are reevaluating their cybersecurity strategies in light of new regulations 
-Spending rebounds: Learn about the significant increase in cybersecurity budgets among 92% of surveyed organizations
-Compliance uncertainty persists: Explore the reasons behind the alarming 19% that feel unprepared
-Incident reporting could slow: With 43% noting a delay in this critical process over the past year
-Preparing for the Cyber Resilience Act (CRA): Only one-third of respondents are confident in their current capabilities to meet CRA
-Consensus with AI Regulation: 83% agree that there should be regulations on the development and use of AI in cybersecurity

Sign up today to learn the current cybersecurity landscape and arm yourself with the foresight needed to anticipate and tackle future regulatory and compliance challenges.

Taming the Beast: How Effective Are Incident Disclosure Regulations?

Imagine if GPS only showed major roads. You might get a sense of where to go, but you’d miss important details like traffic jams or road closure. 

While operational, the same holds true for case management offered by most security automation or SOAR platforms: You have some information but are missing the ability to drill into the details to determine the best path forward. It’s not good enough. 

See what dynamic case management looks like in our live demo webinar on Wednesday, April 17th at 1 pm ET. In the 30-minute webinar, we’ll show you how Swimlane Tubine’s Case Management: 

-Enhances visibility by showcasing all relevant event details without the need for manual investigations
-Analyzes & enriches case data with the context needed for intelligent incident response 
-Automates the correct remediation action in just one click, reducing MTTR by 50%

Don’t settle for “good enough” case management. Register now! 


Speaker: Steve McGee

With more than 25 years in the IT industry, Steve McGee emerges as a seasoned professional in security automation and SaaS solutions. Currently working as a Senior Sales Engineer at Swimlane, Steve helps organizations tackle their security challenges.

Throughout his professional journey, Steve played pivotal roles, notably contributing to ExtraHop Networks and Tyler Technologies. He has a knack for using technology to solve real-world problems.

Beyond tech, Steve is known for effective communication and relationship-building. His commitment to delivering solid results in various technical settings aligns with a broader approach to thought leadership.

Steve's story shows how technology makes a real difference in dealing with the challenges of today's IT world.

Top Case Management Capabilities Every Analyst Needs

The attack surface and telemetry sources will forever grow. Threats will rise in sophistication. Security professionals are always racing against machines. This is where "good enough" automation falls short because it can't keep up ⸺ it will never be good enough.

See firsthand the difference between good enough and great security automation by joining us for a live demo of Swimlane Turbine on March 21 at 1 pm ET. 

During the demo, we’ll show how Turbine combines the power of AI, automation, and low-code to revolutionize SecOps fundamentals and outcomes.  

-240% ROI with a platform that serves your security system of record
-Infinite integrations with API on-demand
-Automate at the scale of 25M actions per day, 10x faster than anything else

About the Presenter: 
Bryon Page, Field CTO, Swimlane
Bryon is the Field Chief Technology Officer at Swimlane, leveraging over 15 years of experience in the cybersecurity space. Known for his thought leadership, Bryon collaborates with global companies to enhance organizational security. His consultative approach to addressing business-critical challenges encompasses a wide range of products and services, including endpoint security, IDS/IPS, DLP, encryption solutions, proxy, malware analysis and sandboxing, EDR, CASB, and SIEM. Renowned for his proficiency in security automation, Bryon ensures that Swimlane remains at the forefront of technological innovation in the cybersecurity domain. He holds a bachelor's degree in Computer Science and is a proud veteran, having served in the United States Marine Corps.

Elevate Security Automation with Turbine

Welcome to a new era of SecOps!

Swimlane sets a new SecOps paradigm by building the world’s most capable automation engine and most flexible user experience. With the introduction of its latest innovations, Hero AI and Turbine Canvas, Swimlane Turbine is the first and only AI-enabled, low-code security automation platform that is the system of record for the entire security organization.

Join Swimlane product leaders David Irwin and Sri Hary Vengadasubbu for a live demo and presentation of Turbine’s latest developments.

In this webinar, see how Turbine will help you:

Make AI-augmented decisions while protecting all sensitive data with Swimlane's private LLM
Generate complex Python scripts in seconds through the Text-to-Code Chatbot
Categorize and prioritize issues more efficiently with AI Case Summarization
Build a playbook 3 x faster with Turbine Canvas

Meet Turbine's Innovations: Hero AI and an Ultra-Simple Playbook Builder

2024 is ripe with potential and brimming with challenges. The cybersecurity landscape continues to rapidly shift between technological evolution and sophisticated threats. Are you ready for this new era in cybersecurity? 

Join us for a webinar where executives from Swimlane share key predictions, emerging trends, and strategic insights for 2024, including:
  
-A world where AI is a new reality & its future in cybersecurity
-Maximizing efficiency in a “do more with less” environment
-The need to leverage security automation that goes beyond the SOC  
-Best practices for adapting to smarter cybersecurity threats 

Don't miss out on this chance to learn from experts and equip yourself with the knowledge needed to navigate this new era of cybersecurity. Register now!

Executive Panel: Predicting A New Era for Cybersecurity in 2024?!?

With the volume and velocity of attacks against them growing, the need to secure cyber and physical systems has never been greater. As a result, IT and OT professionals are increasingly turning to powerful new tools – like low-code security automation – to protect even the most vulnerable organizations.

You’re invited to a special conversation with Ian Anderson, Sr. Manager Enterprise Security and Monitoring as we explore lessons learned from OG&E’s automation journey, including:
- How to assemble a winning team of automation experts
- Determining which processes are the best candidates for automation
- Selecting the most appropriate set of tools
- Taking a threat-centered strategic approach
- Striving for a culture of continuous improvement

Join us to learn how you can leverage low-code security automation to ensure the protection of your organization’s critical infrastructure.

Protecting Cyber and Physical Systems with Low-Code Security Automation

Linux has risen to become one of only a few truly global go-to operating systems. Unfortunately, its growth in adoption has also attracted a growing number of attackers – and an expanding ecosystem of threats. That’s why Vali Cyber is redefining Linux security by combining its new ZeroLock platform with the power of Swimlane’s automation.

Join experts from Swimlane and Vali Cyber to explore the power of our partnership and demonstrate:
- The simplicity of integrating ZeroLock and Swimlane via their APIs
- How your team can save time by automating the enrichment of threat intel
- How you can leverage AI/ML techniques to detect, and recover from, attacks
- The amount of time you can save your team by automating Linux and cloud security

We look forward to seeing you.

Linux Security that Actually Works with Vali Cyber and Swimlane

The job of a SecOps professional has traditionally been plagued with time consuming (and frustrating) manual activity.  Fortunately, low-code security automation can drastically reduce the energy and effort needed to secure even the most complex organizations.  Moreover, recent advances in this technology mean that tasks and alerts that once took hours to finish, can now be completed automatically in mere seconds.

During the webinar we will explore:
- How to integrate and automate virtually any tool in your security stack
- How to easily create workflows and playbooks with visual, drag-and-drop tools
- Why manual alert review and legacy SOAR products just aren’t up to the challenge
- How you can improve key metrics like MTTD and MTTR without any additional hiring

Join Swimlane Automation Evangelist, Jay Spann, as we show you how you can rapidly automate even the most complex SecOps processes.

How to Automate Your Security Operations in 10 Mins or Less

Le travail d'un MSSP n'a jamais été aussi difficile. Alors que les surfaces d'exposition des organisations s'étendent, les outils et les environnements requis pour les protéger deviennent de plus en plus complexes. Heureusement, il existe des process et des technologies telles que l'automatisation de la sécurité low code qui peuvent aider les MSSPs à rationaliser et à améliorer leurs services de sécurité.

Au cours de ce webinaire, nous vous montrerons comment vous pouvez :
• Intégrer et automatiser pratiquement n'importe quel outil de sécurité de votre portefeuille de solutions
• Réduire considérablement les efforts manuels grâce à des workflows et des playbooks faciles à créer
• Créer un système central qui permet d'établir; de personnaliser et d'automatiser les flux de travail et de répondre rapidement aux incidents de sécurité
• Améliorer vos services sans embauche supplémentaire

Rejoignez les experts de Swimlane et Hermitage Solutions pour découvrir comment vous pouvez utiliser l'automatisation de la sécurité low code pour rationaliser et renforcer vos services de sécurité.

MSSPS, Améliorez Votre Efficacité Grâce à l'Automatisation de la Sécurité

The need to secure cyber-physical systems and critical infrastructure against cyberthreats has never been greater.  As the volume and velocity of attacks against industrial organizations grows, security teams often specifically struggle to protect their operational technology (OT) environments.  Fortunately, IT and OT professionals have an increasingly powerful set of new tools – like low-code security automation – that they can turn to for help keeping their organizations safe.

Join OT and cybersecurity automation experts from Nozomi Networks and Swimlane as we explore:
●   How companies can prepare for the continued convergence of OT and IT
●   Top cybersecurity threats and challenges facing cyber-physical systems
●   The role security automation and asset management can play in providing efficient, effective protection
●   Key facets of a new cyber-physical security automation ecosystem

Register for this special session to learn more about practical steps you can take today to secure your OT and IT assets from the rising tide of cyberthreats.

This webinar is also available in French. Register here: https://www.brighttalk.com/central/account/19313/channel/17794/talk/594033

Protecting Critical Infrastructure with Low-Code Security Automation

Il n’a jamais été aussi important de sécuriser notre environnement: systèmes physiques et informatiques ainsi que les infrastructures essentielles contre les cybermenaces. Avec l’augmentation du numbre et vitesse des attaques contre les organisations industrielles, les équipes de sécurité ont souvent du mal à protéger spécifiquement leurs environnements de technologie d’exploitation. Heureusement, les professionnels des technologies de l'information (IT) et d’exploitation disposent d'un ensemble croissant d'outils puissants tels que l'automatisation de la sécurité low-code auxquels ils peuvent faire appel pour assurer la sécurité de leurs organisations. 

Nozomi Networks et Swimlane, experts en automatisation d’exploitation et de la cybersécurité couvriront les sujets suivants:

Comment les entreprises peuvent se préparer à la convergence continue des technologies de l’information et d’exploitation
Les principales menaces et défis en matière de cybersécurité auxquels sont confrontés les systèmes physiques et informatiques
Le rôle que peuvent jouer l'automatisation de la sécurité et la gestion des actifs pour offrir une protection efficace et efficiente
Les principaux aspects d'un nouvel écosystème d'automatisation de la sécurité informatique et physique.

Inscrivez-vous à cette session spéciale pour en savoir plus sur les étapes pratiques que vous pouvez entreprendre dès aujourd'hui pour sécuriser vos actifs physiques et informatiques face à la montée croissante des cybermenaces.

Ce webinaire est aussi disponible en anglais. Inscrivez-vous ici: https://www.brighttalk.com/webcast/17794/593685?utm_source=Swimlane&utm_medium=brighttalk&utm_campaign=593685

Protéger les infrastructures en automatisant votre sécurité avec du low-code

Malicious email remains the most common threat vector facing most organizations.  As the number and variety of these attacks grows, security operations teams are increasingly challenged to find the time needed to properly investigate suspicious messages. Fortunately, combining the latest threat intelligence tools with low-code security automation can be used as a force multiplier.  In this session cybersecurity experts from Broadcom (Symantec) and Swimlane will discuss how the integration of these tools can be used to thwart attacks.

Register now to learn:
• Details about the growing threats posed by phishing and malicious emails
• Threat investigation challenges for typical SIEM environments
• How threat intelligence speeds identification and management of email threats
• What SOAR can do for resource-strapped SecOps teams
• How the Broadcom (Symantec) DeepSight and Swimlane integration can help defend against advanced attacks

Staying on Top of Malicious Emails with Threat Intelligence and SOAR

Cyber Incident Response

Cyber Security

Email Security

IT Security

Phishing

SecOps

SOAR

Symantec

Threat Assessment

Threat Intelligence

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Staying on Top of Malicious Emails with Threat Intelligence and SOAR

Presented by

About this talk

More from this channel