Name
Dealing with Alert Fatigue and Measuring Security Operations Effectiveness
Date & Time
Tuesday, May 25, 2021, 10:30 AM - 11:00 AM
Brian Cusick Patriz Regalado
Description

Ready to take security analytics to the next level? Want to drastically reduce your alert volumes and still detect more threats? Learn strategies to prioritize your security alerts and see how risk-based alerting in Splunk SIEM reduces alert queues while also enabling detection of sophisticated attacks. Lastly, we will showcase examples of how to measure the efficiency and productivity of your security operations program.

Session ID
SEC102ENG
Session Type
Breakout Session
Skill Level
Intermediate
Region
AMER
Product
Splunk Enterprise Security, Splunk User Behavior Analytics
Session Language
English