Analysis Paralysis: Billions of Logs to Incidents That Matter
Speaker: Tony Merritt, SecureWorks Managing Principal
Duration: 1 hour
So many events, so little time. Working in security can quickly get overwhelming.
Event logs are arriving from more directions than ever before, and with cloud, mobile and IoT increasing in popularity, our environments are growing larger by the day.
How do you begin to make sense of such a large number of logs? How do you follow with impactful incident response? In this webcast Tony Merritt, Secureworks Managing Principal, explores how to cut through the noise of event logs and take decisive action.
Topics covered include:
- Sensing: Finding priorities among the noise.
- Improving Sensing: How do you ensure you have visibility?
- Sense Making: Identifying what matters and why.
- Decisions Making: Turning logs into a response.