Technical Webinar: from early warning to breach investigation using Anomali and Splunk
Many cybersecurity conversations today are marked by a few common issues, for example: massive volumes of data, lack of analysts, and increasingly complex adversarial attacks. Most security operation center teams are focused on operational day-to-day tasks and responding to threats as they occur.
Watch David Greenwood, Senior Solutions Engineer in a short webinar to discussing ways to make security analysts more effective and efficient:
- Using threat intelligence platform to facilitate the management of cyber threat intelligence and associated entities such as actors, campaigns, incidents, signatures, bulletins and TTPs
- How the integration of Anomali and Splunk enables Bi-directional flow of threat intelligence data for additional enrichment, correlation and analysis
- How analysts could be aided through automated IOC matching and customisable alerting against your security data in Splunk
- Creating dashboards detailing event data associated with IOCs allowing you to pivot on severity, type, classification, time.
Senior Solutions Engineer @Anomali
David Greenwood heads up Splunk Integrations at Anomali. He is an enthusiastic researcher, developer, blogger, and author. Prior to joining Anomali, David worked for Splunk helping some of the largest enterprise companies architect, build and implement cyber-security strategies.