Name: A walk through Expel’s AWS Mind Map
Start: 2021-09-21T22:14:00Z
End: 2021-09-21T22:14:14.000Z
Location: BrightTALK
Rating: 0

Expel helps companies of all shapes and sizes minimize risk and strengthen their security postures. Expel’s leading managed detection and response (MDR) services protect organizations by augmenting existing programs and providing detections and automation that drive world-class results, with full transparency in everything we do.

Learn more about us at https://expel.com.


The Expel Quarterly Threat Report (QTR) for Q1 2024 is back with a breakdown of the trends, notable new behaviors, and unusual attacks our security operations center (SOC) team saw over the past quarter. Except this time, we made it even easier for busy operators to digest our analysis with a new blog series.
Join Ben Brigida, Senior Director, SOC Operations, and Aaron Walton, Threat Intel Analyst, for a conversation on the most interesting (and surprising) takeaways from this quarter. From the way we’re seeing attackers leverage AI, to the criticality of patching severe vulnerabilities, we’ll give you a taste of what to expect in our QTR blog series.
No matter the format, our goal with these reports remains the same: by sharing how attackers got in, and how we stopped them, we’ll translate the security events we detect and remediate into strategy for your organization.

Expel Q1 Quarterly Threat Report: threats, trends, and protecting your org

Building a security operations center (SOC) isn’t as simple as hiring a team and getting to work. Even if you ignore financial factors such as labor shortages, limited budgets, and macroeconomics, you’re still navigating a landscape that’s growing exponentially, and keeping up is the baseline for survival. 

Successfully running an efficient SOC that’s also built for growth is no easy feat. 
Join experts from Expel and Enterprise Strategy Group (ESG) as they discuss:

- Common misconceptions about building and maintaining an in-house SOC, and where orgs often get stuck
- What your peers expect of their managed detection and response (MDR) providers
- How ESG quantifies the value of a provider through their economic validation process and the results from their evaluation of Expel
- The outcomes and value an MDR provider like Expel can bring to your security program

How working with an MDR provider can advance security programs and lower costs

Ever wondered what defines cybersecurity effectiveness? Is it defending against at attack, the ability to mitigate attacks in the first place, or both?

Unsure of how your peers see it?

Listen in as Dave Shackleford, SANS Institute, and Greg Notch, CISO at Expel, discuss the latest SANS report on frameworks, tools, and other techniques that orgs prefer to use to measure and assess their security programs.

In this webinar, you will learn about:

- What frameworks are used to define, measure, and assess SOC functions (hint, NIST CSF is preferred by 74% of respondents)
- The KPIs orgs are using to measure SOC performance
- If, when, and how training and compliance policies are used to maintain cybersecurity
- Cybersecurity maturity level self-assessment, hows and whys

Watch now to learn more about how your peers are benchmarking and measuring cybersecurity operations.

The Journey to Operational Security Effectiveness and Maturity

Hear from Expel cybersecurity experts Daniel Clayton, VP of Security Operations, and Aaron Walton, Threat Intelligence Analyst, as they guide you through four of the biggest threats from Expel’s annual report. They share what we learned from 2023, where they expect to see things change or continue in 2024, and how to protect your attack surfaces against identity-based, cloud infrastructure, malware, and phishing threats.

Annual Threat Report: Key takeaways from Expel Annual Threat Report 2024

Timely remediation: It’s critical to responding to active threats in an environment. Knowing when (and when not) to apply automation is equally important. Given the speed at which threat actors can progress through the attack lifecycle, configuring automated remediation steps can go a long way. Hear how Expel approaches incident response and puts auto-remediation into practice.

The steps to sensible auto-remediation

We’ve seen quite a few incidents in AWS. And we noticed a few common themes about when and why attackers use different AWS APIs – and they mapped nicely to the MITRE ATT&CK tactics. Follow along as we walk you through Expel’s AWS mind map and share why constructing a mind map can assist in developing detections, performing timeline analyses and identify attacker paths in AWS.

A walk through Expel’s AWS Mind Map

Alerts Detection

Amazon Web Services

Cloud Security

Cyber Security

MSSP

Response Incident

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

A walk through Expel’s AWS Mind Map

Presented by

About this talk

More from this channel