Operationalizing security intelligence for the mid market - Rafal Los - RSA Conference 2014

•

2 gefällt mir•1,662 views

The document discusses operationalizing security intelligence for mid-market companies. It defines security intelligence as the collective activities and artifacts that enable intelligence-driven security decisions. It outlines the key requirements for security intelligence as high-quality internal and external data, well-defined internal processes, qualified personnel, and integrated technology solutions. The goal is to help mid-market companies develop the capabilities to more effectively detect, respond to, and resolve security incidents.

Technologie Business

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
OperationalizingSecurity
IntelligencefortheMid-
Market
Rafal M. Los
Principal, Strategic Security Services
HP Enterprise Security Services
RSAConference-2014

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
whatis“securityintelligence”?

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
“collective set of activities, and
artifacts to make intelligence-
driven decisions”

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
detect,respond,resolvemore
effectivelyintheattacklifecycle

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Whenyouthinkof
“SecurityIntelligence”…

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
“somethingbigenterprisesdo”

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
whynotyou?

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
thistalkisaframeworkforyou

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
..togetyouthinking,motivated

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
requirements

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
highqualityinternal&external
data+telemetry

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
internalprocesses+workstreams

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
qualifiedpersonnel

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
intelligent,optimizedtechnology

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
let’sbreakthatdown…

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
internalinformation/data–
knowyourenterpriseattacksurface

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
forexample–
• internal business plans
• internal IT technology stack
• known vulnerabilities
• known, accepted risks
• strict change management
• configuration awareness
• unauthorized change detection
• employee activities, habits

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
externalinformation/data-
besituationallyaware

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
convertinformationintoaction

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
forexample–
• handling of inbound, external data sources
• formats: csv, pdf, dashboards and text
• distilling data for relevance
• collating and categorizing with internal data
• prioritizing alerts based on prescribed formulas
• alerting appropriate internal & external entities
• creating actionable items from trusted data
• triage of event(s)
• incident management and handling
• incident response, dfir

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
difficultto“addon”responsibility

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
SOCanalyst
SecurityIntelligenceanalyst..no

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
highlyspecializedskillset

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
forexample–
• ability to quickly parse different log types
• ability to quickly make sense of disparate data
• ability to collate and correlate unstructured data
• ability to write code on-the-fly (script)
• proficient in many different security technologies
• able to perform collaborative tasks effectively
• ability to triage incidents quickly, effectively
• proficiency with forensics tools
• strong decision-making capabilities

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
techthatworkstogether

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
preferintegratedoverdisparate

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
techthatmakesanalysismore
efficient,addscertainty

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
wemayknowalittlesomethingaboutthis…

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
quickrecap

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
“SecurityIntelligence”is..
the capability to
detect, respond, and resolveyour
security incidents though an
information-driven approach.

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Youcandothis.
Youneedtodothis.

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
Knowmore.
Defendsmarter.

Weitere ähnliche Inhalte

Andere mochten auch

Software Security Assurance - Program Building (You're going to need a bigger...

Rafal Los

Presentación en inglés

rockerhmk

Defying Logic - Business Logic Testing with Automation

Rafal Los

Threat modeling the security of the enterprise

Rafal Los

When it comes to intrusions and breaches, most security teams take a short-game view. This means that they look at events as discrete and individual and focus efforts on short-term goals. While not universally detrimental, this view does harm the overall security of an organization in the "long game”. Additionally, “active defense” has been hopelessly confused by marketing hype even though its meaning is powerful to security’s operational goals. This talk focuses on how enterprise security defenders can adjust their mindset, refocus, and beat adversaries by leveraging active defense over the long game. The basis of this talk is the extensive research done in support of the threat intelligence solution blueprint, a comprehensive guide to understanding, architecting, operationalizing and maturing a threat intelligence program.

Losing battles, winning wars

Rafal Los

"Translating Strategy to Measureable Actions... from PowerPoint to Practice

Nidal Bitar

Andere mochten auch (6)

Software Security Assurance - Program Building (You're going to need a bigger...

Presentación en inglés

Defying Logic - Business Logic Testing with Automation

Threat modeling the security of the enterprise

Losing battles, winning wars

"Translating Strategy to Measureable Actions... from PowerPoint to Practice

Ähnlich wie Operationalizing security intelligence for the mid market - Rafal Los - RSA Conference 2014

Criminal Education: Lessons from the Criminals and Their Methods

HP Enterprise Italia

3 tips to funding your security program

CloudBees

HP Software Performance Tour 2014 - Guarding against the Data Breach

HP Enterprise Italia

Presented by: John Fleker, HP Abstract: The cyber threat landscape is continually evolving. More and more, the critical infrastructure of our nation is at risk. Whether by nation-state actors, criminal organizations, hacktivists or any number of hackers looking to prove their skills, our safety and economic prosperity is threatened. There are four things that must be considered in order to address the evolving threats: 1- Becoming more proactive in our cyber defense efforts through intelligence 2- Better user behavior management 3- Assessing risk using meaningful metric 4- Resilience – operating through an intrusion We need to look at the threat picture differently – in a proactive way – to ensure that CEO’s and CIO/CISO’s are on the same page regarding the threat, to allow those leaders to make better resourcing decisions and to be better prepared to mitigate adversaries when they arrive at the security perimeter. We need to integrate a wider set of intelligence into our thinking. This is critical to taking a more proactive stance in defending your networks. Combined with what you know of your own network, cyber intelligence strategically helps make solid resource planning decisions and functionally, helps your network operators better defend, mitigate and operate through cyber intrusions. The Operational Levels of Cyber Intelligence paper by the Intelligence and National Security Alliance details a better way of using intelligence. www.insaonline.org/i/d/a/Resources/CyberIntel_WP.aspx Additionally, we must increase info sharing across the board. Executive Order 13636 - Improving Critical Infrastructure Cybersecurity is leading critical infrastructure that direction.

Dynamic Cyber Defense

EnergySec

Incorporating cloud computing for enhanced communication v2

Christian Verstraete

HP Helion - Copaco Cloud Event 2015 (break-out 4)

Copaco Nederland

SDN Realized Application Directed Networking

Open Networking Summits

Facilitating an agile, interative, user-centric approach to digital service creation This session will reveal the results of our latest survey which looked at digital services and how government organisations are tackling the challenge of delivering world-class digital products that meet people’s needs. In total, 272 individuals from 163 organisations completed the survey representing central government and associated agencies. One of the key findings was that as part of their digital strategy, the majority of organisations are embracing the government’s move towards agile. In this session, we will highlight the HP software offerings that facilitate an agile, iterative, user-centric approach to tackling business problems. Speakers: Verity Greig, HP Software Sales Specialist & Consultant, Hewlett Packard Mark Turner – HP Software PreSales, Hewlett Packard

Digital government presentation final

Shirlie23

Retail security-services--client-presentation

Joseph Schorr

What is the value of big data? How does a user get that value? Before, analysts would have to wait months relying on IT for a new report or make changes to an existing one. Now, analysts are able to shrink that time down to days or even minutes. On top of that, analysts can ask questions that were not possible before. In this webinar, we’ll show you how this analysis is possible and the value that has been achieved by customers. In this session, you will learn: How analysts get value out of big data How to visualize data at every step of analysis How analysts can do big data analytics without IT, in one product

Webinar - Big Data: Power to the User

Datameer

Introduction To Big Data Analytics On Hadoop - SpringPeople

SpringPeople

Attach Summit - PC Services - 7_29 final

Scott Bradford

EDF2014: Rüdiger Eichin, Research Manager at SAP AG, Germany: Deriving Value ...

European Data Forum

A customer service call can transform internal processes. Information in Tweets and reviews can lead to better products. Structured and unstructured data brought together can reveal patterns and relationships that unlock powerful business opportunities. We will discuss real-world use cases and best practices for building the infrastructure you need to power Big Data analytics solutions. From the latest in Hadoop innovation, cognitive computing, and cloud-based analytical web services, you will learn how organizations large and small can harness the power of unstructured human information to create, deploy, and deliver the next generation of analytics applications. Powered by HP IDOL, HP Autonomy delivers intelligent applications that allow your organization to understand the concepts and context of all information in real time, mitigating risk and identifying opportunity. Join us at this session to learn how HP Autonomy can unlock the value of your company’s structured and unstructured data for better insight and greater competitive advantage. HP IDOL, the OS for human information, enables you to index, manage, and process all your data, both structured and unstructured. Learn how HP IDOL delivers unprecedented insights into optimized architecture, scalability, performance, mapped security, and connectivity. Find out more about IDOLOnDemand.com and how you can leverage this revolutionary technology in your own organization.

Take the Big Data Challenge - Take Advantage of ALL of Your Data 16 Sept 2014

pietvz

איך יוצרים חוויית משתמש מנצחת בעולם ה-Big Data - עודד קלימר

Uniq UI: Usability, UX, and UI design, consulting and training

Banks are rich in valuable data and can build and maintain a competitive advantage by identifying and executing on high-value machine learning projects leveraging the rich data available.This webinar will describe use cases fit for big data and machine learning in the banking sector (commercial, consumer, regulatory, and markets) and the impact they can have for your organization. 3 things to learn: * How to create a next generation data platform and why it is important * How to monetize big data using predictive modeling and machine learning * What is needed for automated machine learning as a sustainable, cost-effective, and efficient solution

Transform Banking with Big Data and Automated Machine Learning 9.12.17

Cloudera, Inc.

Human Information is made up of ideas, is diverse, and has context. Ideas don’t exactly match like data does; they have distance. Human Information is not static – it’s dynamic and lives everywhere. Details on applications HAVEn is integrated to costumers architecture through other n Apps HP has started modifying our existing application portfolio to use HAVEn And HP is building new applications that leverage power of HAVEn Many customers are already building applications that use multiple HAVEn

4. Big data & analytics HP

MITEF México

Ironic summary @ LCA 2014

Devananda Van Der Veen

HUG Hadoop User Group du 29 Janvier 2015 chez HP. Slidedeck des 3 talks ci-dessous: #1: Traitement des données non structurées (Vidéos, images, …) avec Haven pour Hadoop, #2: Apache Flink: Fast and Reliable Large-scale Data Processing, #3: Etude de cas, projet Hadoop dans le domaine des RH avec Capgemini. La vectorisation des documents : rendre comparables des informations non structurées, de nouvelles opportunités pour un acteur de l’emploi

Hadoop User Group 29Jan2015 Apache Flink / Haven / CapGemnini REX

Modern Data Stack France

R_George_CAS4329-PS_Fluid_Gallaudet_Sierra-Cedar

Richard George

Ähnlich wie Operationalizing security intelligence for the mid market - Rafal Los - RSA Conference 2014 (20)

Criminal Education: Lessons from the Criminals and Their Methods

3 tips to funding your security program

HP Software Performance Tour 2014 - Guarding against the Data Breach

Dynamic Cyber Defense

Incorporating cloud computing for enhanced communication v2

HP Helion - Copaco Cloud Event 2015 (break-out 4)

SDN Realized Application Directed Networking

Digital government presentation final

Retail security-services--client-presentation

Webinar - Big Data: Power to the User

Introduction To Big Data Analytics On Hadoop - SpringPeople

Attach Summit - PC Services - 7_29 final

EDF2014: Rüdiger Eichin, Research Manager at SAP AG, Germany: Deriving Value ...

Take the Big Data Challenge - Take Advantage of ALL of Your Data 16 Sept 2014

איך יוצרים חוויית משתמש מנצחת בעולם ה-Big Data - עודד קלימר

Transform Banking with Big Data and Automated Machine Learning 9.12.17

4. Big data & analytics HP

Ironic summary @ LCA 2014

Hadoop User Group 29Jan2015 Apache Flink / Haven / CapGemnini REX

R_George_CAS4329-PS_Fluid_Gallaudet_Sierra-Cedar

Mehr von Rafal Los

The 7 Things I Know About Cyber Security After 25 Years | April 2024

Rafal Los

The 5 Ps of Preparedness - Hope is Not a Strategy [1].pdf

Rafal Los

Irrational But Effective - Applying Parenthood Lessons to Cyber Security

Rafal Los

SAINTCON 21 - Of Sandcastles and Luck (Fixing Vulnerability Management)

Rafal Los

Strategies and Tactics for Effectively Managing Vulnerabilities in Diverse En...

Rafal Los

Lies, Fables and Security Metrics

Rafal Los

Rebooting the Enterprise Security Program for Defensibility - ISSA Internatio...

Rafal Los

Cloud Security Alliance- Challanges of an elastic environment v8a [public]

Rafal Los

Security BSides Atlanta - "The Business Doesn't Care..."

Rafal Los

The Future of Software Security Assurance

Rafal Los

Ultimate Hack! Layers 8 & 9 of the OSI Model

Rafal Los

Into the Rabbithole - Evolved Web App Security Testing (OWASP AppSec DC)

Rafal Los

Oh No They Didn't! 7 Web App Security Stories (v1.0)

Rafal Los

The QA Analyst's Hacker's Landmark Tour v3.0

Rafal Los

Magic Numbers - 5 KPIs for Measuring SSA Program Success v1.3.2

Rafal Los

Sans Feb 2010 - When Web 2 0 Attacks v3.3

Rafal Los

StarWest 2009 - Detective Work For Testers: Finding Workflow Based Defects

Rafal Los

SecTor '09 - When Web 2.0 Attacks!

Rafal Los

A Laugh RIAt -- OWASP 2009 Web 2.0 Talk

Rafal Los

Creating Practical Security Test-Cases for Web Applications

Rafal Los

Mehr von Rafal Los (20)

The 7 Things I Know About Cyber Security After 25 Years | April 2024

The 5 Ps of Preparedness - Hope is Not a Strategy [1].pdf

Irrational But Effective - Applying Parenthood Lessons to Cyber Security

SAINTCON 21 - Of Sandcastles and Luck (Fixing Vulnerability Management)

Strategies and Tactics for Effectively Managing Vulnerabilities in Diverse En...

Lies, Fables and Security Metrics

Rebooting the Enterprise Security Program for Defensibility - ISSA Internatio...

Cloud Security Alliance- Challanges of an elastic environment v8a [public]

Security BSides Atlanta - "The Business Doesn't Care..."

The Future of Software Security Assurance

Ultimate Hack! Layers 8 & 9 of the OSI Model

Into the Rabbithole - Evolved Web App Security Testing (OWASP AppSec DC)

Oh No They Didn't! 7 Web App Security Stories (v1.0)

The QA Analyst's Hacker's Landmark Tour v3.0

Magic Numbers - 5 KPIs for Measuring SSA Program Success v1.3.2

Sans Feb 2010 - When Web 2 0 Attacks v3.3

StarWest 2009 - Detective Work For Testers: Finding Workflow Based Defects

SecTor '09 - When Web 2.0 Attacks!

A Laugh RIAt -- OWASP 2009 Web 2.0 Talk

Creating Practical Security Test-Cases for Web Applications

Kürzlich hochgeladen

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

How to Troubleshoot Apps for the Modern Connected Worker

ThousandEyes

Evaluating the top large language models.pdf

ChristopherTHyatt

CNv6 Instructor Chapter 6 Quality of Service

giselly40

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

BooK Now Call us at +918448380779 to hire a gorgeous and seductive call girl for sex. Take a Delhi Escort Service. The help of our escort agency is mostly meant for men who want sexual Indian Escorts In Delhi NCR. It should be noted that any impersonator will get 100 attention from our Young Girls Escorts in Delhi. They will assume the position of reliable allies. VIP Call Girl With Original Photos Book Tonight +918448380779 Our Cheap Price 1 Hour not available 2 Hours 5000 Full Night 8000 TAG: Call Girls in Delhi, Noida, Gurgaon, Ghaziabad, Connaught Place, Greater Kailash Delhi, Lajpat Nagar Delhi, Mayur Vihar Delhi, Chanakyapuri Delhi, New Friends Colony Delhi, Majnu Ka Tilla, Karol Bagh, Malviya Nagar, Saket, Khan Market, Noida Sector 18, Noida Sector 76, Noida Sector 51, Gurgaon Mg Road, Iffco Chowk Gurgaon, Rajiv Chowk Gurgaon All Delhi Ncr Free Home Deliver

08448380779 Call Girls In Friends Colony Women Seeking Men

Delhi Call girls

Handwritten Text Recognition for manuscripts and early printed texts

Maria Levchenko

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

🐬 The future of MySQL is Postgres 🐘

RTylerCroy

08448380779 Call Girls In Diplomatic Enclave Women Seeking Men

Delhi Call girls

What is a good lead in your organisation? Which leads are priority? What happens to leads? When sales and marketing give different answers to these questions, or perhaps aren't sure of the answers at all, frustrations build and opportunities are left on the table. Join us for an illuminating session with Cian McLoughlin, HubSpot Principal Customer Success Manager, as we look at that crucial piece of the customer journey in which leads are transferred from marketing to sales.

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

HampshireHUG

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Product Anonymous

Tech Trends Report 2024 Future Today Institute.pdf

hans926745

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

08448380779 Call Girls In Greater Kailash - I Women Seeking Men

Delhi Call girls

Three things you will take away from the session: • How to run an effective tenant-to-tenant migration • Best practices for before, during, and after migration • Tips for using migration as a springboard to prepare for Copilot in Microsoft 365 Main ideas: Migration Overview: The presentation covers the current reality of cross-tenant migrations, the triggers, phases, best practices, and benefits of a successful tenant migration Considerations: When considering a migration, it is important to consider the migration scope, performance, customization, flexibility, user-friendly interface, automation, monitoring, support, training, scalability, data integrity, data security, cost, and licensing structure Next Wave: The next wave of change includes the launch of Copilot, which requires businesses to be prepared for upcoming changes related to Copilot and the cloud, and to consolidate data and tighten governance ShareGate: ShareGate can help with pre-migration analysis, configurable migration tool, and automated, end-user driven collaborative governance

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

sammart93

Kürzlich hochgeladen (20)

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

How to Troubleshoot Apps for the Modern Connected Worker

Evaluating the top large language models.pdf

CNv6 Instructor Chapter 6 Quality of Service

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

08448380779 Call Girls In Friends Colony Women Seeking Men

Handwritten Text Recognition for manuscripts and early printed texts

Exploring the Future Potential of AI-Enabled Smartphone Processors

🐬 The future of MySQL is Postgres 🐘

08448380779 Call Girls In Diplomatic Enclave Women Seeking Men

04-2024-HHUG-Sales-and-Marketing-Alignment.pptx

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Tech Trends Report 2024 Future Today Institute.pdf

Artificial Intelligence: Facts and Myths

A Domino Admins Adventures (Engage 2024)

Boost PC performance: How more available memory can improve productivity

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

Boost Fertility New Invention Ups Success Rates.pdf

08448380779 Call Girls In Greater Kailash - I Women Seeking Men

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff

Operationalizing security intelligence for the mid market - Rafal Los - RSA Conference 2014

1. © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. OperationalizingSecurity IntelligencefortheMid- Market Rafal M. Los Principal, Strategic Security Services HP Enterprise Security Services RSAConference-2014

3. © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. “collective set of activities, and artifacts to make intelligence- driven decisions”

17. © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. forexample– • internal business plans • internal IT technology stack • known vulnerabilities • known, accepted risks • strict change management • configuration awareness • unauthorized change detection • employee activities, habits

19. © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. forexample– • sentiment against your brand/organization • threat climate of your business vertical • attacks against similar organizations, vertical • specific threats against your staff/resources • geopolitical issues pertaining to your enterprise • 3rd party reported vulnerabilities • 3rd party reported exploits • weaknesses in your external technologies • reported abused enterprise assets

22. © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. forexample– • handling of inbound, external data sources • formats: csv, pdf, dashboards and text • distilling data for relevance • collating and categorizing with internal data • prioritizing alerts based on prescribed formulas • alerting appropriate internal & external entities • creating actionable items from trusted data • triage of event(s) • incident management and handling • incident response, dfir

27. © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. forexample– • ability to quickly parse different log types • ability to quickly make sense of disparate data • ability to collate and correlate unstructured data • ability to write code on-the-fly (script) • proficient in many different security technologies • able to perform collaborative tasks effectively • ability to triage incidents quickly, effectively • proficiency with forensics tools • strong decision-making capabilities

34. © Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. “SecurityIntelligence”is.. the capability to detect, respond, and resolveyour security incidents though an information-driven approach.

Operationalizing security intelligence for the mid market - Rafal Los - RSA Conference 2014

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Andere mochten auch

Andere mochten auch (6)

Ähnlich wie Operationalizing security intelligence for the mid market - Rafal Los - RSA Conference 2014

Ähnlich wie Operationalizing security intelligence for the mid market - Rafal Los - RSA Conference 2014 (20)

Mehr von Rafal Los

Mehr von Rafal Los (20)

Kürzlich hochgeladen

Kürzlich hochgeladen (20)

Operationalizing security intelligence for the mid market - Rafal Los - RSA Conference 2014