We use cookies to ensure that we give you the best experience on our website. By continuing your visit on the website, you consent to the use of the cookies. If you want to find out more about the cookies we use, you can access our Privacy Policy.
Is your security operations staff overworked? Which of the thousands of high priority alerts generated should you start with each day, knowing that you can get to them all? Are your alerts even actionable? Implementing Risk Based Alerting (RBA) with Splunk Enterprise Security can provide a solution to these questions.
About this event
[UPATE: EVENT LOCATION - ATLANTA TECH VILLAGE]
Is your security operations staff overworked? Which of the thousands of high priority alerts generated should you start with each day, knowing that you can get to them all? Are your alerts even actionable? Implementing Risk Based Alerting (RBA) with Splunk Enterprise Security can provide a solution to these questions.
The session will take a hands on approach by using a lab environment to walk through RBA with its components and frameworks. Then, I’ll share some trials from the field and some best practices learned, along with an approach and some resources to get you started on your RBA Journey.
*This Splunk Plugged-In event will also include food, drinks, and swag!*