Phantom & MITRE ATT&CK - Virtual Meetup

Edinburgh Splunk User Group

Wednesday, April 8, 2020, 3:00 – 5:00 PM UTC


About this event

Join us for a security-focused online Splunk User Group!

We’ll be exploring some of the more advanced capabilities of Phantom and also discussing the security framework from MITRE “ATT&CK” and it’s valued use when integrating it with Splunk Enterprise! We’ll also have two SplunkTrust members available for some general Q&A in our own ‘Meet the Experts’.

  • Splunk Phantom Workbook Automation - SOAR (Security Orchestration, Automation & Response)
    Tom Wise (Phantom Security Solutions Engineer & Trainer)
  • Threat Hunting, Or: How I Learned to Stop Worrying & Love ATT&CK
    Cian Heasley / Fraser Dumayne (Security Engineers)
  • Meet the Experts with SplunkTrust
    Harry McLaren (Senior Splunk Consultant)
    Tom Wise (Splunk Consultant, Phantom Security Solutions Engineer & Trainer)

Joining via WebEx

This virtual event will use Cisco WebEx for remote participation provided by our local supporter, Adarma. The details to join are below:

We adopt and enforce the Berlin Code Of Conduct (CoC) for all our events and all cases of abuse or harassment are dealt with swiftly and in accordance with this CoC.

Any concerns or issues should be reported to the organiser(s) of this chapter: Harry McLaren ( / @cyberharibu on Twitter / @Harry on Splunk Community Slack)



Wednesday, April 8, 2020
3:00 PM – 5:00 PM UTC