Diese Präsentation wurde erfolgreich gemeldet.
Wir verwenden Ihre LinkedIn Profilangaben und Informationen zu Ihren Aktivitäten, um Anzeigen zu personalisieren und Ihnen relevantere Inhalte anzuzeigen. Sie können Ihre Anzeigeneinstellungen jederzeit ändern.
Javvad Malik, Senior Security Analyst
The 451 Group

A global syndicated research, data, advisory,
certification, and professional services firm
providing thoug...
These aren’t the logs you’re looking for
IDS monitoring days
Security monitoring
Goal of security monitoring
Deciding what to monitor
Identify your assets

Visibility of your assets is
important.
Document assets.
Prioritize assets
No fancy tools, no problem
Using what’s available
HoneyX
Human Sensor
Filter out the noise
Get to know your environment

Do you know what
your environment
usually looks like?

Can you spot
anomalies?
Reporting
Responding
Summary

Be clear on what you’re monitoring and why
Clearly define roles
Share information
Thank you

Javvad Malik
Senior Analyst, 451 Research
Javvad.malik@451research.com
@J4vv4D
SolarWinds®
Log & Event Manager

Security Information & Event Management
SIEM Made Simple

© 2013 SOLARWINDS WORLDWIDE, LL...
You Can’t Control What You Can’t See!

© 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED
20
Make Your Log Files Work for You
Your IT infrastructure’s log files hold the key for mitigating threats
and thwarting atta...
Find the Needle in the Haystack—Fast

IT professionals are
under increased
pressure to quickly
detect and respond to
threa...
How SolarWinds Log & Event Manager Can Help
SolarWinds Log & Event Manager is a comprehensive, easy-to-use security
inform...
Be in Know and Stay in Control at All Times!
Get the information you need, when you need it, to stop threats and
overcome ...
SolarWinds Log & Event Manager Demo

© 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED
25
Try Log & Event Manager for Free!

Yes, FREE!
Download Free, Fully Functional
30-Day Trial

© 2013 SOLARWINDS WORLDWIDE, L...
Additional Resources
 SolarWinds Log & Event Manager Overview
 SolarWinds Log & Event Manager Guided Tour
 Why & How of...
Trademark

The SOLARWINDS and SOLARWINDS & Design marks are the exclusive property of
SolarWinds Worldwide, LLC, are regis...
Thank You!

© 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED
29
Nächste SlideShare
Wird geladen in …5
×

These aren't the logs you’re looking for... Learn the Basics of Security Monitoring.

615 Aufrufe

Veröffentlicht am

Security monitoring is vital to the health of today’s “always on” organizations. Without effective monitoring, you’re just flying blind and giving threats a hall pass. But, where do you start? What if you don’t have the budget to build a monitoring capability the size of a death star, much less an army of storm troopers to staff its operations?

Veröffentlicht in: Technologie, Business
  • Hi there! Get Your Professional Job-Winning Resume Here - Check our website! http://bit.ly/resumpro
       Antworten 
    Sind Sie sicher, dass Sie …  Ja  Nein
    Ihre Nachricht erscheint hier

These aren't the logs you’re looking for... Learn the Basics of Security Monitoring.

  1. 1. Javvad Malik, Senior Security Analyst
  2. 2. The 451 Group A global syndicated research, data, advisory, certification, and professional services firm providing thought leadership and direct business value to the emergent digital infrastructure industry.
  3. 3. These aren’t the logs you’re looking for
  4. 4. IDS monitoring days
  5. 5. Security monitoring
  6. 6. Goal of security monitoring
  7. 7. Deciding what to monitor
  8. 8. Identify your assets Visibility of your assets is important. Document assets. Prioritize assets
  9. 9. No fancy tools, no problem
  10. 10. Using what’s available
  11. 11. HoneyX
  12. 12. Human Sensor
  13. 13. Filter out the noise
  14. 14. Get to know your environment Do you know what your environment usually looks like? Can you spot anomalies?
  15. 15. Reporting
  16. 16. Responding
  17. 17. Summary Be clear on what you’re monitoring and why Clearly define roles Share information
  18. 18. Thank you Javvad Malik Senior Analyst, 451 Research Javvad.malik@451research.com @J4vv4D
  19. 19. SolarWinds® Log & Event Manager Security Information & Event Management SIEM Made Simple © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 19
  20. 20. You Can’t Control What You Can’t See! © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 20
  21. 21. Make Your Log Files Work for You Your IT infrastructure’s log files hold the key for mitigating threats and thwarting attacks, but only if they’re handled properly. © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 21
  22. 22. Find the Needle in the Haystack—Fast IT professionals are under increased pressure to quickly detect and respond to threats, which requires turning raw log data into actionable security intelligence and fast! © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 22
  23. 23. How SolarWinds Log & Event Manager Can Help SolarWinds Log & Event Manager is a comprehensive, easy-to-use security information and event management (SIEM) solution in an affordable all-in-one virtual appliance, providing automated 24x7 log monitoring, analysis, alerting, reporting, and response.       Automatic collection, analysis, and storage of all log data Real-time event correlation for immediate threat detection Built-in Active Responses for automated remediation Advanced search and data visualization for fast and easy forensics Pre-packaged templates for simplified compliance reporting Hundreds of out-of-the-box filters, rules, searches, and reports  SECURITY EXPERTISE NOT REQUIRED! Security Monitoring and Response Made Easy © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 23
  24. 24. Be in Know and Stay in Control at All Times! Get the information you need, when you need it, to stop threats and overcome the increasing security and compliance challenges faced each day. © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 24
  25. 25. SolarWinds Log & Event Manager Demo © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 25
  26. 26. Try Log & Event Manager for Free! Yes, FREE! Download Free, Fully Functional 30-Day Trial © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 26
  27. 27. Additional Resources  SolarWinds Log & Event Manager Overview  SolarWinds Log & Event Manager Guided Tour  Why & How of Workstation Monitoring with Log & Event Manager  Combat Security Threats with SolarWinds LEM's Active Responses  Case Study: SolarWinds LEM & EasyStreet  Case Study: SolarWinds LEM & United States Postal Service Federal Credit Union © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 27
  28. 28. Trademark The SOLARWINDS and SOLARWINDS & Design marks are the exclusive property of SolarWinds Worldwide, LLC, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks, registered or pending registration in the United States or in other countries. All other trademarks mentioned herein are used for identification purposes only and may be or are trademarks or registered trademarks of their respective companies. © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 28
  29. 29. Thank You! © 2013 SOLARWINDS WORLDWIDE, LLC. ALL RIGHTS RESERVED 29

×