Google’s Chronicle Security Operations: Why Doesn’t My SIEM Do That?

Logo
Presented by

Jake Williams, Senior Instructor - SANS

About this talk

Organizations need modern threat detection that operates at scale, and Google’s cloud-native SIEM platform, Chronicle, delivers. During SANS tests, analysts observed multiple threat detections that most organizations haven’t even pondered including in their SIEM. SIEMs in general were supposed to enable three main goals: - Increase visibility. - Enable detection of security events. - Support the response of discovered security issues. While those goals haven’t changed, it’s undeniable that traditional SIEM solutions have failed to address them. Addressing these shortcomings are core to the Chronicle mission. During this webcast, SANS Senior Instructor Jake Williams shares his experience with Chronicle, evaluating its features and usability from a practitioner perspective. Learn how Chronicle has a significant number of capabilities and was obviously designed to address shortcomings inherent in many SIEM platforms. Watch now and find out why you’ll ask, “Why doesn’t my SIEM do that?” on more than one occasion.
Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (221)
Subscribers (55809)
Transform your cybersecurity with frontline intelligence, modern security operations and AI-powered cloud innovation.